Report a security issue
If you observe suspicious account activity, possible data exposure, or platform misuse, contact us with timestamps, affected account details, and impact summary.
Email support@sparknestailabs.comSecurity Overview
Security controls for ContentBridge CMS
The platform is built around explicit consent, least-privilege scope requests, and read-only ingestion boundaries designed for Google OAuth verification readiness.
Minimum OAuth Scopes
Only `profile`, `email`, and `youtube.readonly` are requested for this workflow.
Read-Only Source Access
No upload, edit, delete, or channel setting changes are executed by this app.
Token and Session Security
OAuth tokens are handled server-side with refresh controls and protected-route checks.
User-Controlled Disconnect
Users can disconnect anytime. Token revocation is attempted and session state is cleared.