If you discover a security vulnerability in these templates, please report it responsibly.
Do not open a public issue for security vulnerabilities.
Instead, please email security concerns to the 23blocks team or use GitHub's private vulnerability reporting feature.
- Description of the vulnerability
- Steps to reproduce
- Affected template(s) and version(s)
- Potential impact
- Any suggested fixes (optional)
When using these templates:
- Never commit secrets - Use environment variables for API keys and tokens
- Use cookie mode in production - For web apps,
authMode: 'cookie'is more secure than token mode - Keep dependencies updated - Regularly run
npm auditand update packages - Review environment files - Ensure
.envfiles are in.gitignore
We provide security updates for the latest version of each template.
| Template | Supported |
|---|---|
| nextjs | Latest |
| angular | Latest |
| mobile | Latest |