Security
Low Tide ships with safe defaults, but production needs more.
Shipped
Request validation and size caps.
Rate limiting (Redis-backed when configured).
Model override disabled by default.
Optional workspace API keys.
Lock it down
Set `REQUIRE_AUTH=true` and provide `WORKSPACE_API_KEYS_JSON`.
Restrict mutating API calls with `ALLOWED_ORIGINS`.
Use a secrets manager for provider keys.
Redact prompts in any analytics pipeline.
Production checklist
Enable Postgres for receipts and conversation sync.
Enable Redis for consistent rate limits.
Rotate provider keys regularly.
Set logging to minimal in production.