cottongin 974f0e4a67 Harden secret handling: remove weak fallback defaults, fail fast on missing env vars ...

JWT_SECRET and ADMIN_KEY no longer fall back to insecure defaults.
The app will throw at startup if these env vars are not set.
docker-compose.yml now uses :? syntax to require them.

Co-authored-by: Cursor <cursoragent@cursor.com>

2026-02-07 14:07:09 -05:00

1.1 KiB

Raw Permalink Blame History

View Raw