Reporting Security Vulnerabilities

[MosesOX]

Hi - we want to responsibly disclose a security in Jaaz
Where is the right place to report them to?
It will be best to have them open as part of the Security tab as a GHSA

[MosesOX]

Hi
We are planning to publicly disclose this issue at 15-April-2026 alongside other similar issues we found as part of a bigger research
If there are any questions or anything you need on our end, please feel free to contact us here

We would really appreciate if there would be a place to disclose all details in an organized manner without exposing anything publicly

Regards,
Moshe

[MosesOX]

@xianmin @joeliu926 @power88 @benis-me @foxcss
Hey, can I get any kind of confirmation that you've seen this?

[Anil-matcha]

@MosesOX If you're looking for a fully open-source, self-hostable alternative with no cloud dependency, check out Open-AI-Design-Agent — an AI design agent that supports 200+ image and video models, actively maintained, and requires no proprietary backend.