next-forge is a Next.js project boilerplate for modern web application. The BASEHUB_TOKEN commited in apps/web/.env.example. Users should avoid use of this token and should remove any access it may have in their systems.
The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.