Security

CoWork OS Security Documentation

Synced from github.com/CoWork-OS/CoWork-OS/docs

This documentation covers the security architecture of CoWork OS, an AI-powered task automation platform.

Contents

Security Model - Overview of the security architecture
Trust Boundaries - Understanding workspace, channel, and network boundaries
Configuration Guide - How to configure security settings
Best Practices - Recommended security settings and practices

Quick Start

CoWork OS is designed with security in mind. By default:

Pairing mode is enabled for all channels - users must enter a pairing code to connect
Sandboxing isolates command execution using macOS sandbox-exec or Docker
Tool restrictions prevent sensitive operations in shared contexts (group chats)
Approval gates require user confirmation for destructive operations

Security Principles

Defense in Depth - Multiple layers of security controls
Least Privilege - Tools only have access to what they need
Deny by Default - Explicit allowlisting for access
Audit Trail - All messages and actions are logged

Need Help?

For security questions, see the FAQ section
To report a security issue, please email info@coworkosapp.com

Previous

Windows npm Smoke Test

Next

Security Model

Was this page helpful?Edit this page on GitHub