DevSwarm takes security seriously. We are committed to protecting user data, code, and privacy.

DevSwarm is designed with privacy-first principles:

• Your code stays on your machine
• LLM interactions use your own API keys, or runs locally
• Telemetry can be turned off anytime in settings

If you discover a security vulnerability, please report it responsibly:

For sensitive security issues:

• Email: security@devswarm.ai
• Include detailed steps to reproduce
• Allow reasonable time for response and fix

For general security concerns:

• Open an issue using our bug report template
• Tag with "security" label

When using DevSwarm:

• Keep your LLM API keys secure
• Review generated code before committing
• Use appropriate branch permissions for sensitive repositories
• Follow your organization's security policies
• Follow the seucrity recommendations of any/all coding assistant(s) you are using

We will notify users of security updates through:

• GitHub releases
• Email notifications (if subscribed)
• In-app notifications for critical updates

Last updated: 2025-09-08