document public-repo security boundary in working context
This commit is contained in:
@@ -22,6 +22,12 @@ Not included here:
|
|||||||
- station hostnames and private endpoints
|
- station hostnames and private endpoints
|
||||||
- station-specific bandmaps/bandplans/deploy service wiring
|
- station-specific bandmaps/bandplans/deploy service wiring
|
||||||
|
|
||||||
|
## Security Boundary (Public Repo)
|
||||||
|
|
||||||
|
- This repository is public.
|
||||||
|
- Never commit live configurations, production environment files, credentials, tokens, private hostnames, or any sensitive operational data.
|
||||||
|
- Keep all live/runtime secrets in deployment/runtime environment layers outside this repository.
|
||||||
|
|
||||||
## Configuration Layers
|
## Configuration Layers
|
||||||
|
|
||||||
Expected priority order:
|
Expected priority order:
|
||||||
|
|||||||
Reference in New Issue
Block a user