Please report security issues privately by opening a GitHub security advisory rather than a public issue. I'll try to respond within a few days.
- Real secrets never belong in the repository. They live in the Cloudflare Worker
secret store or in a local, git-ignored
local-server/.env. local-server/.env.exampledocuments every configuration key with placeholder values only.- A real
.envis never committed;local-server/.env.exampledocuments every key with placeholder values only.
- The public intake server (
8788) authenticates uploads with short-lived tokens and a shared secret; the admin API (8789) is loopback-only and gated by a separate admin token. - Document bytes travel directly between the browser and the local server over the Cloudflare Tunnel; the Worker only mints tokens and tracks job state.