Bubble Docs
  • Introduction
  • New? Start Here
  • What is Bubble?
  • The Glossary
  • User manual
    • Getting started
      • What is Bubble?
      • Building your first app
        • Planning features
        • Database structure
        • Design and UX
        • eCommerce and payments
          • Shopping cart
          • Checkout page
          • One-time payments
          • Subscriptions
          • Marketplace
      • Creating and managing apps
      • The Bubble editor
        • Tabs and sections
          • Design tab
            • The element tree
            • The property editor
          • Workflow tab
          • Data tab
          • Styles tab
          • Plugins tab
          • Settings tab
            • Application settings
              • Custom headers/body
              • Visual settings
              • Social media sharing
              • Translating your app
              • Email settings
              • Collaboration
            • Custom domain and DNS
          • Logs tab
        • Tools
          • Key features
          • The search tool
          • The Issue Checker
          • The element tree
          • The element property editor
          • The debugger
          • Notes
        • Previewing your app
      • Transitioning to Bubble from...
        • JavaScript
        • HTML and CSS
        • SQL
    • Design
      • Elements
        • The element hierarchy
          • The element tree
        • The page
        • Containers
          • Groups
          • Repeating groups
          • Table elements
          • Popups
          • Floating groups
          • Group focus
        • Visual elements
        • Input forms
          • Text and numbers
          • Dates and time
          • File uploads
          • Selection controls
        • Reusable Elements
      • Styling
        • Color variables
        • Font variables
        • Styles
        • Custom Fonts
      • Responsive design
        • Building responsive pages
        • Legacy articles
          • The Basics (Legacy)
          • Building Responsive Pages (Legacy)
          • Migrating Legacy Pages
          • Tips When Designing (Legacy)
      • Templates
      • The Component Library
      • Importing from Figma
    • Data
      • The database
        • Data types and fields
        • Creating, saving and deleting data
        • Finding data
        • Displaying data
        • Protecting data with privacy rules
        • The database editor
        • Export/import data
          • Exporting data
          • Importing data (CSV)
        • Working with location data
        • Using Algolia
        • Database structure by app type
          • Marketplace Apps
          • Directory & Listings Apps
          • Social Network Apps
          • SaaS Apps
          • Project Management Apps
          • CRM Apps
          • Professional Services Apps
          • On-demand Apps
          • Documentation/ CMS Apps
          • Applicant Tracking System (ATS) Apps
          • Portfolio Apps
          • Gallery Apps
          • Online Store / Ecommerce Apps
          • Blog Apps
          • Messaging App
          • Dashboards
          • Building Block Apps
          • Bubble as a backend
      • Files
      • Images
      • Static data
        • App texts (translations)
        • Option sets
      • Temporary data
        • Custom states
        • URL parameters
      • User accounts
        • Authentication plugins
          • Facebook plugin
          • Fitbit plugin
          • Google plugin
          • Instagram plugin
          • LinkedIn plugin
          • Pinterest plugin
          • Slack plugin
          • Wistia plugin
          • YouTube plugin
        • Cookies set by Bubble
      • Time, dates and time zones
    • Logic
      • The frontend and backend
      • Workflows
        • Events
          • Frontend events
            • Recurring workflows
            • Custom events
          • Backend events
            • Database trigger events
        • Actions
        • API Workflows
      • Dynamic expressions
      • Conditions
      • Navigation
        • Single-page applications (SPA)
        • Multi-page applications
        • Page slugs
    • Workload
      • Understanding workload
        • Activity types
        • The workload calculation
        • Client-side and server-side processing
      • Tracking workload
        • Measuring
          • Using App Metrics
        • Monitoring
          • Workload notifications
          • Infinite recursion protection
      • Optimizing workload
        • Optimization framework
        • Optimization checklist
          • Page load
          • Searches
          • Workflows and actions
          • Backend workflows
        • Agency showcases
          • Minimum Studio
          • Neam
          • Support Dept
    • Security
      • Bubble's security features
      • Planning app security
      • Client-side and server-side
      • Bubble account security
      • App security
      • Page security
      • Database security
      • API security
        • API Connector security
        • Data API security
        • Workflow API security
      • Flusk
        • Overview
        • Flusk plan features
        • Getting started with Flusk
        • Flusk security tools
          • The Issues Explorer
          • Issue details
          • Tools and settings
            • Pages rating
            • Database rating
        • Flusk FAQ
      • Cookies
      • Security checklist
    • Publishing your app
      • Web app
      • Native mobile app
        • Global native mobile settings
        • iOS App Store
        • Google Play Store
        • Publishing FAQ
    • AI
      • Generate apps with AI
        • About AI app generation
      • AI page designer
      • Connect to AI agents
    • Maintenance
      • Collaborators
      • Version control
        • Best practices: Version control
        • Transitioning from the legacy version control
        • Terminology: Version control
        • Version Control (legacy)
      • Commenting
      • Database maintenance
        • Copying the database
        • Restoring database backups
        • Bulk operations
          • Bulk operation methods compared
        • Wiping change history
      • Performance
        • Hard limits
        • Capacity Usage (legacy)
        • Notes on queries
      • SEO
        • Introduction to SEO
        • SEO: App
        • SEO: Page
      • Testing and debugging
        • Introduction to testing and debugging
        • The debugger
        • The server logs
        • Supported browsers
      • API workflow scheduler
    • Integrations
      • API
        • Introduction to APIs
          • What is a RESTful API?
        • The Bubble API
          • Bubble API terminology
          • Authentication
            • How to authenticate
            • No authentication
            • As a User
            • As an admin
          • The Data API
            • Data API Privacy Rules
            • Data API endpoints
            • Data API requests
          • The Workflow API
            • Workflow API privacy rules
            • Workflow API endpoints
            • API workflows
              • Creating API workflows
              • Scheduling API workflows
              • Recursive API workflows
              • API Workflow Scheduler
              • Case: Stripe notifications
        • The API Connector
          • Authentication
          • API Connector security
          • API guides
            • OpenAI
              • Authentication
              • Calls
                • ChatGPT
                  • Chat
            • Google Translate
              • How to setup Google API keys
          • Streaming API
        • API security
        • Plugins that connect to APIs
        • API Glossary
      • Plugins
        • What Plugins Can Do
        • Installing and using Plugins
        • Authentication plugins
        • Special Plugins
      • SQL Database Connector
      • Bubble App Connector
      • WorkOS
        • WorkOS SSO
        • WorkOS API
    • Infrastructure
      • Sub-apps
      • Bubble release tiers
      • Hosting and scaling
        • How Bubble hosting works
        • Scaling with Bubble
        • CDN (Cloudflare)
        • Bubble app names
        • Domain and DNS
      • Compliance
        • GDPR
        • SOC 2 Type II
        • HIPAA
        • Other frameworks and standards
    • Bubble for Enterprise
      • Hosting and infrastructure
        • Dedicated instance
          • The Dedicated editor experience
          • Technical specs
          • Main cluster dependencies
          • Customizable options
          • Migration process
            • Pre-migration
            • During migration
            • Post-migration
      • Security and compliance
        • Single sign-on (SSO)
        • GDPR
        • SOC 2 Type II
        • HIPAA
        • Other frameworks
        • Bubble's security features
      • Admin and collaboration
      • Priority support
      • Billing and Payment Guideline for Dedicated Instances
  • Core Reference
    • Using the core reference
    • Bubble's Interface
      • Design tab
      • Design tab (Legacy)
      • Workflow tab
      • Data tab
      • Styles tab
      • Styles tab (Legacy)
      • Plugins tab
      • Settings tab
      • Logs tab
      • Template tab
      • Toolbar
      • Top and context menu options
      • Deployment and version control
        • Deployment & Version Control Dropdown (legacy)
      • Notes
    • Elements
      • General properties
      • General properties (Legacy)
      • Styling properties
      • Styling Properties (Legacy)
      • Responsive Properties
      • Responsive Properties (Legacy)
      • Conditional formatting
      • States
      • Page Element
        • Page Element (Legacy)
      • Visual Elements
      • Containers
      • Container Layout Types
      • Containers (Legacy)
      • Input Forms
      • Reusable Elements
      • Element Templates (legacy)
    • Workflows
    • Events
      • General events
      • Element events
      • Custom events
      • Recurring event
      • Database trigger event
    • Actions
      • Account
      • Navigation
      • Data (things)
      • Email
      • Element
      • Custom
    • Data
      • Data Sources
      • Operators and comparisons
      • Search
      • Privacy
    • Styles
    • API
      • The Bubble API
        • The Data API
          • Authentication
          • Data API endpoints
          • Data API requests
        • The Workflow API
      • The API Connector
        • Authentication
        • Adding calls
    • Bubble-made Plugins
      • AddtoAny Share Buttons
      • Airtable
      • API Connector
      • Blockspring
      • Box
      • Braintree
      • Bubble App Connector
      • Chart.js
      • Circle Music Player
      • Draggable Elements
      • Dropzone
      • Facebook
      • Fitbit
      • Full Calendar
      • Google
      • Google Analytics
      • Google Optimize
      • Google Places
      • Ionic Elements
      • iTunes
      • Slidebar Menu
      • LinkedIn
      • Localize Translation
      • Mixpanel
      • Mouse & Keyboard Interactions
      • Multiselect Dropdown
      • Progress Bar
      • Rich Text Editor
      • Rich Text Editor (Legacy)
      • Screenshotlayer
      • SelectPDF
      • Slack
      • Segment
      • Slick Slideshow
      • SQL Database Connector
      • Star Rating
      • Stripe
      • Tinder-like Element
      • Twitter
      • YouTube
      • Zapier
    • Application Settings
      • App plan
      • General
      • Domain / email
      • Languages
      • SEO / metatags
      • API
      • Collaboration
      • Sub-apps
      • Versions
  • Account & Marketplace
    • Account and billing
      • Pricing and plans
        • Plans and billing
        • Billing cycle
        • FAQ: Pricing and Workload
      • Account Management
      • Building Apps for Others
      • Selling on the Marketplace
      • Plans & Billing (legacy)
    • Official Bubble Certification
      • Hiring certified developers
    • Building Plugins
      • The Plugin Editor
      • General Settings
      • Updating to Plugin API v4
      • Adding API Connections
      • Building Elements
      • Building Actions
      • Loading Data
      • Publishing and versioning
      • Github Integration
    • Building Templates
    • Application and data ownership
    • Marketplace policies
    • Bug reports
  • Vulnerability Disclosure Policy
  • Beta features
    • About the Beta features section
    • Native mobile apps 🔒
      • Introduction
        • What is a native mobile app?
        • Native mobile vs. web development
        • Differences in native and web elements
        • Native mobile app terminology
      • Building
        • Views and navigation
        • Native mobile actions
        • Components and gestures
        • Device resources
          • Location services
          • Camera/photo library
      • Previewing
      • Publishing
Powered by GitBook
On this page
  • Will Flusk slow down my app?
  • Can I use Flusk to perform security audits for customers?
  • How can I use Flusk as an agency?
  • Does using Flusk consume Bubble workload units (WU)?
  • Does Flusk support multiple app versions?
  • What is "test on deploy"?
  • What are scheduled Flusk tests?
  • Exporting a security report as PDF
  • What is Flusk deployments?
  • What is Flusk analytics?
  • What is the Flusk error catcher?
  • Why is my application pending verification?
  • How do I add custom branches/versions in Flusk?
  • How do I enable/disable Bubble versions in Flusk?
  • Why can’t I see any logs in the visual log explorer?
  • How does the AI Privacy Rules Checker access my app data?
  • Will the AI Privacy Rules Checker compromise my app security?
  • How does the AI Privacy Rules Checker secure and process my app's data?
  • Does the AI Privacy Rules Checker store any data from my app?
  • Can the AI Privacy Rules Checker detect data leaks even if my Data API is not open?
  • Why can't my app collaborators access the Flusk dashboard?

Was this helpful?

  1. User manual
  2. Security
  3. Flusk

Flusk FAQ

Will Flusk slow down my app?

Flusk operates with minimal impact on your application's performance. Its processes are optimized to run efficiently in the background, ensuring that your application's speed and responsiveness remain unaffected.

Can I use Flusk to perform security audits for customers?

Yes, Flusk is equipped to conduct thorough security audits, making it suitable for client-facing assessments. Its detailed reporting capabilities provide valuable insights into potential vulnerabilities, assisting in delivering comprehensive security evaluations.

How can I use Flusk as an agency?

Agencies can leverage Flusk to manage and secure multiple client applications effectively. Its multi-tenant architecture allows for streamlined oversight, ensuring each client's application maintains robust security standards.

Does using Flusk consume Bubble workload units (WU)?

The integration of Flusk is designed to operate efficiently, with negligible impact on Bubble . Its processes are optimized to ensure that your application's resource consumption remains within acceptable limits.

Does Flusk support multiple app versions?

Flusk offers multi-version support, enabling the detection and resolution of issues across different application . This functionality allows for effective tracking of issues in various environments, such as development and live.

What is "test on deploy"?

The 'Tests on Deploy' feature allows for automatic execution of security tests upon deploying new application versions. This proactive approach ensures that potential vulnerabilities are identified and addressed promptly, maintaining the integrity of your production environment.

What are scheduled Flusk tests?

Flusk enables the scheduling of regular security assessments, ensuring continuous monitoring of your application's security status. This systematic approach aids in the early detection of vulnerabilities, facilitating timely remediation.

Exporting a security report as PDF

Flusk allows for the export of comprehensive security reports in PDF format. These documents can be utilized for internal reviews or shared with external stakeholders to demonstrate your application's security compliance.

What is Flusk deployments?

Flusk allows you to schedule deployments in advance, so your app is deployed automatically at a specific date and time. This is useful for coordinating releases or planning updates outside of working hours.

Flusk deployments and issue checker: Deployments made with Flusk will proceed even if there are unresolved issues in the editor. This means it's important to review and fix any issues before scheduling a deployment, as they won't block the process or trigger a warning automatically.

What is Flusk analytics?

Flusk Analytics offers insights into application performance and user behavior. By analyzing this data, you can make informed decisions to enhance both security and user experience.

What is the Flusk error catcher?

The Flusk Error Catcher identifies and logs application errors in real-time. This feature facilitates prompt troubleshooting, contributing to improved application stability and reliability.

Why is my application pending verification?

If your application is pending verification, please ensure that all required information has been submitted accurately. The verification process may take some time; your patience is appreciated.

How do I add custom branches/versions in Flusk?

Flusk supports the addition of custom branches or versions, allowing for tailored security assessments across different development stages. This flexibility aids in maintaining consistent security standards throughout the development lifecycle.

How do I enable/disable Bubble versions in Flusk?

Within Flusk, you can manage the activation status of different application versions for security assessments and monitoring. This control enables you to focus resources on pertinent versions, optimizing the security evaluation process.

Why can’t I see any logs in the visual log explorer?

If logs are not visible in the visual log explorer, verify that logging is enabled and properly configured. Additionally, ensure that there are no connectivity issues between your application and the logging service.

How does the AI Privacy Rules Checker access my app data?

The AI Privacy Rules Checker uses a series of requests to your Bubble.io app to gather publicly available information accessible via web browsers. This information is processed on an external server to aggregate and format it for clear and actionable display.

Additionally, the tool can access your app’s database directly, allowing for a thorough assessment of potential data vulnerabilities beyond what is exposed through the Data API.

This analysis helps ensure your Bubble.io app adheres to privacy rules and protects against security risks, utilizing advanced safeguards to prevent unauthorized access or exploitation.

Will the AI Privacy Rules Checker compromise my app security?

The AI Privacy Rules Checker does not compromise the security of your Bubble.io app or perform any unauthorized activities. The tool works exclusively with information that is already publicly accessible.

To further prevent data leaks, the tool obfuscates example data unless you are the verified app owner and does not store any user data on its servers. The primary objective of the tool is to improve Bubble.io security and encourage safe development practices.

How does the AI Privacy Rules Checker secure and process my app's data?

The AI models work exclusively with database structures, such as field names and types, without ever accessing the actual database content.

Does the AI Privacy Rules Checker store any data from my app?

We prioritize data security and ensure that no sensitive data related to your Bubble.io app’s structure or content is stored. Additionally, your app’s database content is never shared with third-party services.

For analytical purposes, only minimal information—such as the app URL, app ID, and the results of the privacy rules test—is stored. This helps us enhance our services and address potential vulnerabilities. Our commitment is to strengthen Bubble.io security and protect your app from potential risks.

Can the AI Privacy Rules Checker detect data leaks even if my Data API is not open?

The tool can identify misconfigured privacy rules even when your app’s Data API is turned off. Disabling the Data API does not eliminate the need for properly configured Privacy Rules to ensure your app’s data remains secure.

Why can't my app collaborators access the Flusk dashboard?

Only collaborators with the Admin setting enabled can access the Flusk dashboard.

Last updated 10 days ago

Was this helpful?