If you discover a security vulnerability within yt-study, please do NOT open a public issue on GitHub.

Instead, please send an email to: contactjaydeepsolanki@gmail.com

We will review the issue and respond as soon as possible.

yt-study handles API keys for various LLM providers.

• Keys are stored locally in ~/.yt-study/config.env.
• Keys are loaded into environment variables only at runtime.
• We NEVER log API keys to the console or log files.
• We rely on litellm and official provider libraries for secure API communication over HTTPS.

Please ensure you keep your local config.env file secure and do not share it.