If you discover a security vulnerability, please report it by emailing the maintainers or opening a private GitHub issue. Do not post sensitive information publicly.
- Remove all secrets from code and configuration
- Use environment variables for sensitive data
- Follow GitGuardian best practices
- No hardcoded credentials or tokens
- Validate and sanitize all user input
- Use least privilege for all services
- Keep dependencies up to date