Application external testing
Testing my application that is running on Scalingo
Can I run a load test on my application that is running on Scalingo?
You can run a load test / smoke test / endurance test on your application under the following conditions:
- Ask the support using support [at] scalingo.com or use the support chat
- You should communicate the metrics of your test to the support (number of connections…)
- The test should only be run during business hours
- The test should have specific start and end hours
I want to have a pentest on my application that is running on Scalingo, what do I do?
A pentest (or intrusion test) is a professional service that you hire to find vulnerabilities in your application.
Such service offer is governed by an agreement which engages all three parties involved: the customer, the pentesting company and Scalingo. This document defines specifically the scope of the pentesting, its duration, and give several restrictions.
- Restriction to the application and databases of the user
- Should not disrupt the normal working of the platform
- No use of social engineering, physical intrusion…
Procedure to follow
- Send the authorization document (signed by the customer and the pentesting service provider) to the Security Team at the address security [at] scalingo.com
- We will reply within 7 business days to give you the authorization or suggest you another time period if there are already too many pentests scheduled at this date
- Let your service provider do the job
- If there are any items in the report that would be of interest to Scalingo, please send us the information so that we can act accordingly