Application security
CSRF validation, secure headers, session regeneration, password hashing, and JSON error handling.
Security
Security is part of the PanelConfig foundation.
PanelConfig is structured with CSRF protection, session hardening, prepared statements, role-aware permissions, audit logs, rate limits, safe upload validation, safe paths, and command allowlists.
Data protection
Prepared statements, hashed passwords, token hashing, role-based access, and release packages without live secrets.
Server safety
Server operations run through jobs and PCCLI command allowlists instead of uncontrolled web input.