? UnboxTrip

Security

Security-by-design with practical defaults and European operational discipline.

Application

  • Rate limiting on API endpoints
  • Helmet security headers
  • Upload size limit and blocked executable extensions
  • Randomized stored file names

Infrastructure

  • HTTPS with certificate automation
  • PostgreSQL internal to Docker
  • Uploads outside public web roots
  • Isolated architecture from Caisse X

Operational visibility

A growing European platform of simple digital services.