Skip to main content

Team Security Practices Overview

Limina builds software in a security conscious manner. This page will give some insight into the processes and measures the engineering team engages in.

Application Security best practices

Limina follows security best practices and engages in development processes including regular vulnerability assessments at the code, application and container levels and remediates them according to the SLAs below. If you have any questions about our processes, feel free to reach out to the team!

Container building

The Limina container is built on an even slimmer slim image to minimize unnecessary dependencies which reduces the container size as well as exposure to dependency vulnerabilities.

SLA for security patches

Limina addresses security issues within the following SLA: Based on the CVSS v3.0 rating system
  • Critical: Within 48 hours of CVE publication and resolution availability
  • High: Within 2 weeks of CVE publication and resolution availability
  • Medium and under: Within 1 month of CVE publication and resolution availability

SOC 2, ISO 27001 and other certifications

Is Limina certified?

Limina is ISO 27001:2022 and SOC2 Type 2 certified. You can find out more at the Limina Trust Center.

Is Limina SOC 2 / ISO 27001 compliant?

Yes! Using our scale product, Limina is SOC 2 and ISO 27001 compliant because we deploy on-prem and we don’t retain any data processed.