You’re viewing an example audit
Fortivibe reviews your app for the security, data, reliability, and deployment issues that can turn a promising prototype into a production headache.
Run an Audit on My AppFix Prompt
Remove `.env` from the repository (`git rm --cached .env`), add `.env` to `.gitignore`, and rotate every secret that was in the file — assume they are compromised.
Psst: this prompt should but is not guaranteed to fix the issue. Each tool (and the models they use) are different and outside of our control.
What does this mean?
Committing `.env` exposes every secret it contains — anyone with repo access (including anyone who ever cloned it) has your keys forever.