Security is a top priority for Gestura.app. We implement comprehensive security measures to protect your voice data and workflows.

Local Processing

By default, all voice processing happens locally on your device. This ensures that sensitive voice commands never leave your environment unless you explicitly configure cloud-based services.

Encryption

All network communications are encrypted using industry-standard TLS protocols. Configuration files and sensitive data are encrypted at rest when stored locally.

MCP Security

Our Model Context Protocol (MCP) implementation includes built-in security features such as capability-based access control and secure communication channels between agents.

Vulnerability Reporting

If you discover a security vulnerability, please report it responsibly through our GitHub security advisory system or contact us directly through our Discord community.

Security Updates

We regularly release security updates and encourage users to keep their installations up to date. Critical security patches are prioritized and released as soon as possible.

Open Source Transparency

As an open source project, our security implementations are transparent and can be audited by the community. We welcome security reviews and contributions from security researchers.

Best Practices

Keep Gestura.app updated to the latest version
Use strong authentication for MCP server connections
Regularly review and audit your voice command configurations
Monitor system logs for unusual activity
Follow the principle of least privilege for agent capabilities

Contact

For security-related questions or to report vulnerabilities, please contact us through our GitHub repository or Discord community.