turborepo-caching

This repository is documentation and templates for configuring Turborepo caching and includes a minimal self-hosted remote cache server example. There is no evidence of deliberately malicious code. However, several security issues are present in the examples that a user should treat as insecure defaults if copied verbatim: the sample cache server provides no authentication or TLS, remote cache signatures are disabled, and there is no input sanitization on path components. These factors increase the risk of unauthorized artifact access or accidental credential exposure when deployed. Recommend: do not deploy the example server publicly without adding authentication, TLS, input validation, and artifact signing; avoid sending tokens to untrusted endpoints; store tokens as scoped secrets in CI; and fix the missing fs import in the HEAD handler.