This repository is a portfolio project and does not provide formal version support. Security-minded fixes will be applied on the default branch when relevant.
If you discover a vulnerability in this project, please do not open a public issue with exploit details.
Instead:
- Contact the repository owner directly through GitHub.
- Include reproduction steps, affected routes, and any proof-of-concept payloads.
- Allow time to validate and remediate before public disclosure.
This project demonstrates:
- environment-based configuration
- centralized error handling
- request validation with Zod
- CI validation
- dependency update automation
- static code scanning via CodeQL