App Dev Planner is currently in early development.

Please do not open public GitHub issues for sensitive security reports.

If you discover a vulnerability, please contact the maintainer privately with:

• a short description of the issue;
• affected area or route;
• steps to reproduce;
• potential impact;
• suggested mitigation, if available.

Maintainer contact:

• GitHub: @marcomartinomarch2005
• Email: marcomartinomarch2005@gmail.com

Do not commit:

• Supabase service-role keys;
• API keys;
• database credentials;
• private environment variables;
• production secrets;
• user data exports.

Use .env.local for local development secrets and keep it out of version control.

Until the project reaches a stable release, security review focuses on the latest version in the default branch.