Kaya Flow is designed to keep private brand data out of public repositories.

Do not commit:

• Real brand identity files
• Private voice examples or antipatterns
• Drafts, research, or posting logs
• API keys, tokens, account IDs, or publisher configuration
• Customer, investor, employee, or partner details

Use private/ for local instance data. It is ignored by default.

If you find a security issue in the template, open a private advisory or contact the maintainers through the repository security channel. Do not publish secrets or private data in an issue.