# Good security practices ## Accounts and Users ### Use secure passwords We check to ensure that passwords meet certain requirements, but you should ensure you're not re-using passwords from other websites. We can't guarantee every single Saturn installation is 100% secure, so protect yourself and use a unique password. ## Code and Plugins ### Plugins **Only download plugins from the Saturn Marketplace.** We scan all plugins on the Marketplace to check for malicious code, whilst we can't guarantee every plugin is 100% secure, we try our best to keep any bad code out. **Don't load plugins from unknown sources or authors.** These plugins could contain malicious code, intended to hack your Saturn installation. Plugins can contain PHP and Javascript code which can send database requests, API calls, and more. ### JavaScript Console **Only use the console if you know what you're doing.** Don't paste code from the internet, or if someone tells you to. This may be a form of attack called a Self-XSS attack. For more information please visit --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.saturncms.net/1.0.0/guide/security/good-security-practices.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.