kg-suite-conformance-runner is a pure-transform library and CLI: it reads JSON files from a directory and emits a structured findings report. No network listener, no remote fetch, no execution of user-supplied code.
The input may include sensitive Suite documents (agent declarations, tool descriptions, prompt provenance, evidence bundles). The report includes file paths and short messages; it does not surface document field content.
Only the latest tagged release is supported.
Please use GitHub Security Advisories for private disclosure:
Do not file public issues for security reports.