If you discover a security vulnerability, please:
- Do NOT open a public issue
- Email: [Your security contact email]
- Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- We aim to respond within 48 hours
- Critical issues will be prioritized
Only the latest release receives security updates.
When using Goodable:
- Never commit
.envfiles - Use strong encryption keys (64-char hex)
- Keep dependencies updated
- Review generated project code before deployment
- Limit access to the projects directory