From 2f43a08c46b7ca270dc5f76c77aad87fb320b6e5 Mon Sep 17 00:00:00 2001
From: Josh Patra <joshpatra12@gmail.com>
Date: Fri, 30 Jan 2026 03:18:34 -0500
Subject: [PATCH] Revise security section for clarity and caution

Updated security note to emphasize zero-trust principles.
---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index c2a49fa..2ad0d30 100644
--- a/README.md
+++ b/README.md
@@ -53,7 +53,7 @@ server {
 }
 ```
 
-**Security:** All authentication is forwarded to Jellyfin - this is as secure as Jellyfin itself. Always use HTTPS for public access.
+**Security:** Don't trust me or my code, or anyone for that matter (Zero-trust, get it?), use Tailscale or Pangolin or Cloudflare Zero-Trust or anything like it please
 
 ## Why "Allstarr"?