[MEDIUM] [Security] JWT Stored in LocalStorage #177
Description
Severity: Medium
Description: The JWT access token is stored in localStorage via Zustand persist middleware. This makes it vulnerable to theft via XSS.
Complexity: 5
Permalink: https://github.com/bigtcze/noteer/blob/main/frontend/src/stores/authStore.js#L206