Security

The plugin relies on OctoPrint authentication and serves routes through the authenticated web interface.

Controls

• Path traversal protection
• File-size limits
• Rate limiting on search requests
• Input validation for filenames and pagination
• Optional masking of sensitive log content

Reporting

Report security issues privately instead of opening a public issue.

See the repository SECURITY.md for the full policy.