Gatsby Is SOC 2 Type 2 Certified
Gatsby Staff Security Engineer Mike Gualtieri shares the good news: Gatsby is now SOC 2 Type 2 Certified!

The next gen Gatsby is here Performance, developer velocity, and scaling to meet Enterprise needs - See what’s launched
Gatsby Staff Security Engineer Mike Gualtieri shares the good news: Gatsby is now SOC 2 Type 2 Certified!
I recently sat down to chat about Gatsby and security with Mike Gualtieri, who leads security efforts here at Gatsby. We talk about why Gatsby’s static architecture boosts security, how we should think about security in the JavaScript ecosystem, securing npm packages vs marketing scripts, and how website security fits into a company’s overall security strategy.
Gatsby is not impacted by the recent critical risk vulnerability in the Log4j 2 library. Read on for more context.
As Gatsby grows so do our cybersecurity efforts! Read about our SOC 2 audit and what we are doing to build a modern security program.
After learning that many existing menstrual cycle tracker apps were sharing user data with third parties, Benedicte Raae decided to build her own. In her Gatsby Days Reconfigured presentation, the co-founder and senior developer of Lilly Labs, shows how to build a secure progressive web app with Gatsby and Userbase for end to end encryption.
At Gatsby, we’ve heard many questions about whether Gatsby is truly ready for the enterprise. The short answer is yes or very soon, depending on your requirements.