Flusk security tools

At its core, Flusk is a tool for simplifying the security management of your Bubble app. It streamlines the process of identifying and addressing potential vulnerabilities. The majority of Flusk’s features are centered around its core security test.

This test runs a comprehensive analysis across various security checkpoints and returns a list of potential vulnerabilities, each accompanied by recommendations for improvement. These findings can include insights into data privacy settings, user access controls, and exposure risks of specific data fields. By highlighting these areas, Flusk helps you take targeted actions to strengthen your app’s security.

It’s important to approach Flusk with the mindset that these are potential vulnerabilities, meaning that they don’t automatically translate to a threat or bug in your app. You can see it as a map that guides you towards points that are worth reflecting on, but it’s not the purpose of all apps to keep all information strictly secure: as a Bubble developer, it’s still your responsibility to identify what and when page and data should be available to any given user.

Similarly, it’s important to remember that due to the vast variety of apps built on Bubble, Flusk cannot test for or identify every possible security concern. As a developer, it’s ultimately your responsibility to review your app’s structure and ensure it aligns with your desired level of security. While Flusk serves as a powerful tool to highlight potential vulnerabilities, its findings should complement—rather than replace—your own thorough testing and implementation of security best practices.

Before running your first Flusk test, we recommend reading through the Security section in the User Manual. This foundational overview of Bubble’s security mechanics will help you better interpret the test results, equipping you with the context needed to make informed adjustments to your app’s security settings and design decisions.

Article series: Security