“Digging into Gatsby 5’s Slice API” Register now
We recently patched a high risk security vulnerability in our Gatsby Cloud Image CDN service. Since all affected customers have been informed about the vulnerability, and have been given time to patch their sites, we are now communicating details of the vulnerability and our fix publicly.
Gatsby Staff Security Engineer Mike Gualtieri shares the good news: Gatsby is now SOC 2 Type 2 Certified!
I recently sat down to chat about Gatsby and security with Mike Gualtieri, who leads security efforts here at Gatsby. We talk about why Gatsby’s static architecture boosts security, how we should think about security in the JavaScript ecosystem, securing npm packages vs marketing scripts, and how website security fits into a company’s overall security strategy.
Gatsby is not impacted by the recent critical risk vulnerability in the Log4j 2 library. Read on for more context.
As Gatsby grows so do our cybersecurity efforts! Read about our SOC 2 audit and what we are doing to build a modern security program.
After learning that many existing menstrual cycle tracker apps were sharing user data with third parties, Benedicte Raae decided to build her own. In her Gatsby Days Reconfigured presentation, the co-founder and senior developer of Lilly Labs, shows how to build a secure progressive web app with Gatsby and Userbase for end to end encryption.
At Gatsby, we’ve heard many questions about whether Gatsby is truly ready for the enterprise. The short answer is yes or very soon, depending on your requirements.
