WitaliB
commented
8 years ago As far as I understand and according to the meteor guide:
Any directory named imports/ is not loaded anywhere and files must be imported using import.
see: https://guide.meteor.com/structure.html#special-directories
I can see you are defining your collection security rules in todos/imports/api/logic_unit/logic_unit.js. This is not dangerous? Any user could read the .js files client side and find any mistake you make. Wouldn't be better to define this rules in /server?