Agent0 Core is infrastructure-level automation software for the ToadAid ecosystem.
This repository does not:
- Custody private keys
- Control treasury assets
- Execute multisig transactions
- Store sensitive production secrets
All sensitive onchain operations require external governance approval via ToadAid multisig.
If you discover a security vulnerability:
- Do not open a public issue.
- Contact ToadAid maintainers directly.
- Provide detailed reproduction steps.
- Allow reasonable time for remediation before disclosure.
Responsible disclosure is expected.
Agent0 Core is designed under the following assumptions:
- All onchain authority remains with multisig governance.
- No autonomous irreversible actions are permitted.
- Secrets must never be committed to this repository.
- CI/CD pipelines must not expose sensitive credentials.
- All automation must remain auditable.
Particular care should be taken when reviewing:
- Scripts that prepare onchain transactions
- Registry integration logic
- Identity-layer enforcement
- Environment variable usage
- CI/CD workflow permissions
Pull requests affecting these areas require elevated review.
- No private keys in code.
- No plaintext secrets in commits.
- Use environment variables for credentials.
- Use scoped tokens with minimal permissions.
- Rotate credentials if exposure is suspected.
Agent0 may prepare transaction payloads.
Agent0 may not execute transactions.
All critical onchain activity must be reviewed and signed by ToadAid multisig signers.
Automation assists.
Governance authorizes.
Security practices align with the Apache License 2.0 and open infrastructure transparency standards.