Who can access the app workflow?

Only authenticated and signed-in users can access core app workflows.

Security

Sellstone uses authenticated access, server-side validation for generation/export/billing routes, and signature verification for billing webhooks.

Only signed-in users can use the application workflow.
Input payload sizes are validated and bounded on API routes.
Billing webhooks are signature-verified before account changes are applied.

FAQ

How is billing integrity protected? Billing webhooks are signature-verified before account metadata is updated.

How do you handle vulnerability reports? We accept responsible disclosure reports at contact@sellstone.app and investigate reports in a risk-based order.

Report security concerns to: contact@sellstone.app

Back to homepage