Security
Security Scope and Disclosure Paths
Security guidance for SpectraStrike by NyxeraLabs is separated between platform security and this website repository.
Platform Security
SpectraStrike platform security and coordinated vulnerability handling are managed under NyxeraLabs disclosure policy.
Review platform security details at /security (Nyxera site).
Website Security (This Repository)
This repository hosts the public marketing website only. It does not host production services or customer environments.
In Scope
- Website content integrity issues
- Dependency vulnerabilities affecting this repository
- Security header or transport configuration flaws
- Build and deployment pipeline risks for this site
Out of Scope
- Production platform services and customer environments
- Theoretical best-practice suggestions without demonstrable impact
- Social engineering attempts
- Issues requiring non-standard client extensions
For reporting procedures and timelines, see Responsible Disclosure.