Explicitly ask AI to perform a security audit of the application

Before launching anything publicly, ask AI to go through the code and look for security issues — unprotected routes, missing input validation, exposed data, and anything else that could be exploited. Treat this as a mandatory step, not an optional one.