Security Information

Important security information and legal disclaimers for Katana users.

Important Legal Disclaimer

Katana is provided "as is" without warranty of any kind.

Users are solely responsible for verifying the security of their own systems, API credentials, and third-party integrations before using Katana. This includes, but is not limited to:

  • Google Account credentials and OAuth tokens
  • API keys and access tokens for integrated services
  • Local system security and access controls
  • Network security and firewall configurations
  • Third-party service security practices

1. Your Responsibilities

  • • Keep API credentials secure and rotate regularly
  • • Review Katana's permissions before authorizing
  • • Monitor usage logs for any suspicious activity
  • • Use Katana only with services you own or have permission to access
  • • Immediately revoke access if you notice unauthorized use
  • • Maintain basic system security (antivirus, updates, etc.)

2. We Don't Control

  • • Third-party service security practices
  • • Your local or network infrastructure
  • • How services like Gmail, Google Calendar, or social platforms handle data
  • • External APIs and their availability
  • • Malicious actors targeting your accounts
  • • User error or misconfiguration

🔒 Recommended Security Best Practices

For Google Services

  • • Use dedicated service accounts where possible
  • • Regularly audit OAuth permissions at myaccount.google.com
  • • Enable 2-factor authentication on all Google accounts
  • • Review login activity periodically

For API Keys

  • • Never commit API keys to version control
  • • Use environment variables for sensitive credentials
  • • Set up usage alerts with service providers
  • • Rotate keys periodically

⚠️ Limitation of Liability

Katana and its creators shall not be liable for any damages arising from:

  • Unauthorized access to your accounts or data
  • Any actions taken by Katana on your behalf that you did not authorize
  • Security vulnerabilities in third-party services
  • Data loss or corruption
  • Service interruptions or downtime
  • Any indirect, incidental, or consequential damages

By using Katana, you acknowledge that you understand these risks and accept full responsibility for securing your own systems and verifying all actions taken by Katana.

Report Security Concerns

If you discover a security vulnerability in Katana, we encourage responsible disclosure. Please contact us with details so we can address the issue promptly.

contact@katana_agent.com

Last updated: February 8, 2026