Windsurf Security Basics Overview Security best practices for Windsurf AI IDE: controlling what code Cascade can see, preventing secrets from leaking into AI context, managing telemetry, and configuring workspace isolation for regulated environments. Prerequisites - Windsurf installed - Understanding of Codeium's data processing model - Repository with identified sensitive files Instructions Step 1: Exclude Secrets from AI Indexing Create at project root (gitignore syntax): Default exclusions (automatic): Files in , , hidden directories ( prefix). Enterprise: Place a global at for org-wide ex…