1. Security Review Exposes Critical Gap: No Rotation Plan for CIAM's Core Social Login API Key
A critical security gap has been exposed within the platform's CIAM (Customer Identity and Access Management) infrastructure. A recent security review (SR-1) identified that the `CIAM_RELOAD_API_KEY`, a pre-shared key used to authenticate the SIGHUP sidecar for social login configuration reloads, lacks any documented r...