Please report security vulnerabilities to "help at bicscan.io"
-
API Tokens
- Never commit tokens to version control
- Rotate tokens regularly
- Use minimal required permissions
-
Environment Variables
- Keep .env files secure and private
- Use separate tokens for development/production
-
Access Control
- Regularly audit Confluence space access
- Follow principle of least privilege