Trust Center
Security & Trust
Security isn't a checkbox NEXUS runs once — it's a gate every single agent task passes through, with an automated remediation loop and a hard merge threshold behind it.
The Security Pipeline
Runs automatically after every agent task — not just at PR time.
Agent Task Completes
A SubAgent / AtomicAgent / MicroAgent finishes its assigned diff and submits it for validation.
SecurityScanner Gate Runs
Every change is scanned for secrets, command/SQL injection, XSS, insecure deserialization, and vulnerable dependencies — automatically, every task.
AutoFix Remediation Loop
If findings exist, AutoFix generates a targeted patch and re-runs the scanner — up to a bounded number of retries (max retries configurable per project).
MergeGate Quality + Security Check
The composite Quality Score Q (30% tests, 25% security, 20% efficiency, 15% self-correction, 10% constitution) must clear 75/100 to merge.
Merge or Escalate
Q ≥ 75 → merge. Q < 75 → AutoFix retried. Q < 60 after retries → BLOCK with human escalation. Nothing ships with unresolved high/critical findings.
SecurityScanner Checks
Sample of the checks run on every agent delivery, mapped to their CWE classification.
| Check | Classification | Description | Status |
|---|---|---|---|
| Hardcoded secrets | CWE-798 | Credentials, API keys, and tokens in source or config. | Pass |
| Command injection | CWE-77 / CWE-78 | Shell metacharacter and unsanitized exec() detection. | Pass |
| SQL injection | CWE-89 | Enforces parameterized queries / ORM-safe patterns. | Pass |
| Cross-site scripting (XSS) | CWE-79 | Output encoding and unsafe innerHTML / dangerouslySetInnerHTML. | Pass |
| Insecure deserialization | CWE-502 | Unsafe pickle / eval / dynamic deserialization patterns. | Pass |
| Dependency audit | CVE database | Known-vulnerable direct and transitive dependencies. | Watch |
How We Handle Secrets & Sensitive Data
Secrets Never Touch the Repo
Credentials, tokens, and keys are injected via environment/secret managers at runtime. The SecurityScanner gate blocks any diff that introduces a hardcoded secret (CWE-798), and Guardian continuously re-checks merged history.
Least-Privilege by Default
Agents operate with scoped, task-specific credentials. SpecialistAgents handling security-sensitive tasks are routed to higher-tier models (opus) with stricter constitutional checks.
Nothing Merges Without the Gate
MergeGate is not optional or bypassable from within an agent task. Every delivery — regardless of agent tier — passes through the same Q ≥ 75 threshold before it can land.
Closed-Loop Remediation
Findings don't just get reported — AutoFix attempts remediation automatically and re-validates. The Phase C campaign demonstrated a real cmd-injection finding go from 1 → 0 with a clean MergeGate PASS.
Responsible Disclosure
Found a vulnerability in NEXUS OS itself?
We take vulnerability reports seriously and welcome responsible disclosure from the security research community. If you believe you've found a security issue in NEXUS OS — the platform itself, not generated application code — please report it privately so we can investigate and patch before any public disclosure.
PGP key available on request. We aim to acknowledge reports within 48 hours.