-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathSECURITY
More file actions
31 lines (20 loc) · 882 Bytes
/
SECURITY
File metadata and controls
31 lines (20 loc) · 882 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
# Security Policy
Security is taken seriously in this project.
If you discover a security vulnerability, please **do not open a public issue**.
---
## Reporting a Vulnerability
Please report security issues privately by contacting the maintainers using one of the following methods:
- Email the address listed in the repository’s contact or maintainer information
- Use private disclosure channels if available on the hosting platform
When reporting, please include:
- A description of the vulnerability
- Steps to reproduce
- Potential impact
- Any suggested mitigations (if known)
---
## Security Best Practices
- Never commit secrets or credentials
- Use strong, rotated secrets for JWT signing
- Run services behind HTTPS
- Apply rate limiting and monitoring in production environments
We appreciate responsible disclosure and will work to address issues promptly.