If you discover a security vulnerability within Yogacara, please send an email to the maintainer. All security vulnerabilities will be promptly addressed.

Please do not disclose security-related issues publicly until a fix has been announced.

When using Yogacara:

1. Seed Data: Be mindful of what data you store in seeds, especially if handling sensitive user information
2. Storage Security: The default SQLite storage is local - ensure proper file permissions
3. API Keys: Never commit API keys or credentials to version control
4. Dependencies: Keep dependencies updated to avoid known vulnerabilities

Thank you for helping keep Yogacara secure! 🙏