🛡️ Security Best Practices

Implemented with industry standards in mind:

• helmet – Secure HTTP headers

• cors – Restricted cross-origin access

• express-rate-limit – Brute-force prevention

• express-mongo-sanitize – Prevent NoSQL injection