--- title: Infrastructure Security sidebarTitle: Infrastructure description: The platform-level protections behind Context7, including hosting, abuse prevention, and secure development --- The operational and platform-level protections behind Context7, including hosted infrastructure, abuse prevention, and secure development practices. ## Platform Infrastructure ### SOC 2 Compliance Context7 runs on **SOC 2 compliant infrastructure** provided by Upstash. - Type II SOC 2 certified infrastructure - Regular security audits and assessments - Continuous monitoring and compliance checks - Industry-standard security controls ### Managed by Upstash Context7's infrastructure is managed by the experienced Upstash team: - 24/7 infrastructure monitoring - Automated security patching - DDoS protection and mitigation - Redundant backups and disaster recovery - Enterprise-grade reliability and uptime ### Upstash Security Practices All security practices and certificates of Upstash apply to Context7 products: - **Data Encryption**: Encryption at rest and in transit (TLS 1.2+) - **Network Security**: VPC isolation, firewall rules, and network segmentation - **Access Control**: Role-based access control (RBAC) and least privilege principles - **Audit Logging**: Comprehensive logging of all system activities - **Incident Response**: Documented incident response procedures - **Vulnerability Management**: Regular security scanning and penetration testing ## Rate Limiting and Abuse Prevention - IP-based rate limiting for anonymous requests - API key-based rate limiting with tiered limits - Automatic detection and blocking of abusive patterns - Protection against DDoS and scraping attacks ## Secure Development Practices - Regular security code reviews - Automated dependency scanning - Secure CI/CD pipelines - Principle of least privilege for all systems - Security testing in development lifecycle