Your token is stored with an environment file as plain text. Protecting your token is the responsibility of the user, in the event that your machine becomes compromised we recommend changing the password to your Plex account immediately. The repository authors, contributors and maintainers are not responsible for your token or machine being compromised (i.e. virus, malware, ransomware, or physical machine access). Your token is sent to the Plex servers for authorization and authentication.

We recommend always using the latest version of this application to ensure the maximum amount of security regarding your Plex account.

For high risk vulnerabilities please report directly to the author of the repositories email: harrison.howard00707@gmail.com
For low risk vulnerabilities you are free to create an issue on the repository with the label 'security'