Security Best Practices
Follow these steps to reduce the risk of unauthorized access and prompt injection.
- Use a gateway auth token and never expose the gateway without auth.
- Restrict allowed user IDs for chat platforms.
- Keep secrets in environment variables, not in prompts.
- Rotate API keys regularly.