Skip to content

Security

Secure Usage

  • Never log secret payloads.
  • Prefer short-lived credentials over static tokens.
  • Scope Vault policies as narrowly as possible.
  • Review cache behavior before enabling it in high-rotation environments.

Reporting Vulnerabilities

Please follow the instructions in the repository-level SECURITY.md file and avoid opening public issues for sensitive reports.