If you discover a security vulnerability within this project, please do not create a public GitHub issue. Instead, please:

1. Email the author directly through GitHub: Mehreen676
2. Include a detailed description of the vulnerability
3. Provide steps to reproduce if possible
4. Allow reasonable time for a response before any public disclosure

When running this project:

• Never expose your .env file or API keys publicly
• Use environment variables for all sensitive configuration
• Keep dependencies updated (npm audit)
• Use HTTPS in production deployments
• Set up proper CORS policies in production

We appreciate responsible disclosure of security vulnerabilities. Contributors who report valid security issues will be acknowledged (with their permission).