{question}
As a SingleStore customer, can I run penetration testing activities on SingleStore products?
{question}
{answer}
Penetration testing permissions vary depending on your deployment type:
-
Self-Managed Customers:
You are free to perform penetration testing on your self-managed SingleStore deployments—whether internally or through a trusted third party. Since these environments are hosted within your own infrastructure, no prior authorization from SingleStore is required. -
Helios and Helios BYOC Customers:
Penetration testing is not permitted on environments hosted by SingleStore. Unauthorized testing may negatively impact other customers in multi-tenant environments, trigger false alarms, degrade service performance, and result in potential security incidents.
Note:
SingleStore regularly performs internal penetration tests on major changes and features. In addition, we engage an independent, accredited third party to perform annual penetration testing on our hosted services.
Attestations of these tests can be obtained through our Whistic profile.
{answer}