# SaferPage Security Feed Environment Template
# Store as /etc/saferpage/security-feed.env with root-readable permissions only.
# Replace placeholders only in the secure server environment or secret manager.
# Do not commit this file with real values.

# URLhaus Host API Credential fuer Malware-/Phishing-Hostabfragen.
SAFERPAGE_URLHAUS_AUTH_KEY=__SET_IN_SECRET_MANAGER_OR_SECURE_SERVER_ENV__

# Google Safe Browsing API Key fuer Threat-Matches.
SAFERPAGE_GOOGLE_SAFE_BROWSING_API_KEY=__SET_IN_SECRET_MANAGER_OR_SECURE_SERVER_ENV__

# Speicherung echter Feed-Observations erst nach Retention-, Review- und Datenschutzfreigabe.
SAFERPAGE_SECURITY_FEED_STORAGE_APPROVED=no

# Kurzlebiges Guard-Flag fuer explizit angeforderte externe Einzelprobe.
SAFERPAGE_SECURITY_FEED_PREFLIGHT_APPROVED=no

# HMAC-Secret fuer signierte Betreiber-Webhook-Delivery.
SAFERPAGE_WEBHOOK_SECRET=__SET_IN_SECRET_MANAGER_OR_SECURE_SERVER_ENV__

# Alternatives HMAC-Secret fuer Operator-Workflows.
SAFERPAGE_OPERATOR_WEBHOOK_SECRET=__SET_IN_SECRET_MANAGER_OR_SECURE_SERVER_ENV__