laurencejackson
commented
3 years ago This issue has now been addressed by #21 and the linked PR
Closed hshuaib90 closed 3 years ago
laurencejackson
commented
3 years ago This issue has now been addressed by #21 and the linked PR
I think having a default password in the .env is a risk as users may forget to change that and then their instance will be compromised. I think it would be better to have it missing and then let the system break, which would force users to set something locally.