Welcome to the WSO2 Security and Compliance Documentation!

Security is our top priority and we proactively look for ways to improve the security of our products, services, and infrastructure. Our security program is transparent so you can be confident when using our products and services and infrastructure for mission-critical projects.

We welcome all contributions from our user community, developers, and security researchers to reinforce our product security. You could even be recognized in our security hall of fame for disclosing vulnerabilities responsibly!


Security Reporting and Reward Program

Report security issues via our private and highly confidential security mailing lists and get rewarded.


Security Processes and Programs

Learn how we manage various aspects of security in WSO2 products


Security Guidelines

Learn how to enforce security-first development and deployment practices


Security Announcements

Product security advisories and our responses to security incidents and vulnerabilities