If you discover a security vulnerability, please send an email to [hey@erencakar.com]. Do not open a public issue.

You should receive a response within 48 hours. If not, follow up via email.

• Authentication (JWT, Google OAuth)
• User data (notes, tasks, settings)
• API endpoints