If you discover a security vulnerability in this project, please report it responsibly.

Do not open a public GitHub issue for security vulnerabilities.

Contact: [email protected]

Include in your report:

• Description of the vulnerability
• Steps to reproduce
• Potential impact
• Suggested fix (if any)

We will acknowledge receipt within 48 hours and aim to release a fix within 14 days of confirmed vulnerabilities.

This MCP server makes network requests to aiprox.dev. It reads the AIPROX_SPEND_TOKEN environment variable for authentication. No other credentials or local files are accessed.