At packagecloud, security is paramount. Our customers entrust us with business critical assets, so we take security very seriously.
The information presented below pertains to our cloud based, multi-tenant SaaS service that we run and manage.
Our on-premise enterprise product packagecloud:enterprise is run by you, on your infrastructure (your AWS account or your own datacenter) which means it is governed by your existing information security controls: from firewalls and VPNs, to IAM and monitoring systems. As such, the information below does not pertain to packagecloud:enterprise installations.
Firewall Information and IP Address Ranges
packagecloud.io supports both IPv4 and IPv6 via Amazon AWS.
Our IP addresses can change dynamically due to AWS autoscalers, so we recommend you
configure your systems to obey the TTLs of our DNS records.
If you are using hostname-based Firewall rules, these are all the hostnames you will need to whitelist.
packagecloud.io uses CloudFront to cache package objects. You may need to whitelist CloudFront's IP Range if you are behind a Firewall.
We use Stripe to process credit card payments for all accounts on packagecloud.io. By using Stripe, along with end-to-end SSL/TLS across the website, packagecloud complies with all PCI Data Security Standards. For more information on Stripe's integration security guidelines visit Stripe's Integration Security Guide.
packagecloud.io is strictly HTTPS/SSL only. There is no plain text access whatsoever.