Use this section when the next question is about dependency intake, vulnerability scanning, or release-artifact trust.
Start with:
This section focuses on supply-chain and release-security automation.
For product-boundary security design inside the app itself, keep using the architecture pages that document the backend preview pipeline, browser-to-companion trust model, and other security-sensitive subsystems.