From da5286dc86f46a306a30671e08b18b73cda015ac Mon Sep 17 00:00:00 2001
From: Sebskyo <sebskyo@gmail.com>
Date: Sun, 2 Mar 2025 08:56:51 +0100
Subject: [PATCH] note on security

---
 app/controllers/application_controller.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index 74d521c..5d41476 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -23,6 +23,7 @@ class ApplicationController < ActionController::Base
   end
 
   def access_denied
+    # NOTE: For security reasons, consider using 404 when denied access to a read operation.
     render 'application/access_denied', status: :unauthorized
   end