Follow @UserbaseHQ on Twitter for more frequent updates.
Cossack Labs has completed a security audit of Userbase!
We picked Cossack Labs because they specialize in cryptographic data security tools (both developer tools and bespoke solutions) for modern applications. Cossack Labs' experts that participated in this audit have decades of hands-on practical experience and formal backgrounds in information security and cryptography.
Cossack Labs found that Userbase prevents an adversary with privileged access to the Userbase server from accessing protected user data under the chosen set of assumptions and constraints. They also provided us with a list of findings and recommendations to strengthen Userbase. We have already implemented a number of their recommendations, and will continue implementing the rest as we work to improve Userbase.
Here is Cossack Labs’ public security audit report.
Here are our supporting documents:
Userbase can be contacted at firstname.lastname@example.org or via Twitter @UserbaseHQ. If you believe you've found a security-related issue, please drop us an email at email@example.com - bug bounty program may apply.