BuildBuddy software undergoes regular security review and penetration testing by organizations preparing for deployment, by paid third party security researchers, and through internal review and testing.
Copies of our penetration testing reports are available by emailing firstname.lastname@example.org.
Feedback is responsibly shared to the product team in order to offer security updates to the BuildBuddy community prior to publicly disclosing issues on the BuildBuddy Security Updates page.
Note: To increase the safety of BuildBuddy users, specific details on security updates in BuildBuddy releases are announced 30 days after the availability of the update. We have a mandatory upgrade policy and only provide updates for the latest release.