Website Security and the Open Berkeley Platform
The Open Berkeley managed website program includes website security for all individual websites, as well as the overall platform. The Web Platform Services team follows best practices for website security, which includes diligent monitoring of Drupal security releases and timely deployment of security updates.
Any new feature is carefully evaluated for security, and additional embedding (beyond built-in widget types) of iframes, scripts, and third-party products is not allowed, in order to prevent any inclusion of insecure code.
If you have any questions about the security of your website and/or the Open Berkeley platform, please email firstname.lastname@example.org.