Security hardening: - Security group: allow inbound 80/443 only - Environment variables set via EB console or CLI (not in code): - `AGENTCHAT_USERNAME` — basic auth username - `AGENTCHAT_PASSWORD` — basic auth password - `PORT` — server port (default 8080 for EB) - `NODE_ENV=production` - Ensure no credentials in repo or logs - Optional: rate limiting per IP/connection
Security hardening:
AGENTCHAT_USERNAME— basic auth usernameAGENTCHAT_PASSWORD— basic auth passwordPORT— server port (default 8080 for EB)NODE_ENV=production