ExpoDeploy
Back to Documentation

Security

Learn about ExpoDeploy's security practices and how to keep your projects secure.

Data Encryption

All sensitive data is encrypted:

  • • Credentials encrypted at rest
  • • TLS 1.3 for all connections
  • • API tokens stored securely

Access Control

Use role-based access control to limit who can access your projects. Only authorized team members can trigger builds or modify settings.

Best Practices

  • Rotate API tokens regularly
  • Use environment variables for secrets
  • Review GitHub OAuth permissions
  • Enable two-factor authentication on your accounts

Reporting Security Issues

If you discover a security vulnerability, please email security@expodeploy.me. We take security seriously and will respond promptly.