Security

Best practices for secure telemetry and using Sublyzer security signals responsibly.

SDK security best practices
  • Use only the public Integration Code (never ship secrets)
  • Avoid sending PII in events (prefer identifiers)
  • Use HTTPS/TLS for all traffic
  • Sanitize user input in your app before it reaches sinks
Vulnerability signals

Sublyzer can surface security-related signals (e.g. insecure headers, risky patterns). Always validate findings before acting.

TestingAI security testing

TestingAI can help exercise flows and highlight risky patterns. Use it as a complement to code review and dedicated security tooling.

See: TestingAI Guide

← Back to SDK Guide

Need help? Join our Discord.