Release 3.1Security
Security Observations
Security-relevant findings from the stabilisation period
Three security-relevant events were identified during the review of the stabilisation period communications.
Summary
| Finding | Severity | Status |
|---|---|---|
| Plaintext credential shared in Slack | High | Requires rotation |
| Unauthorised portal access via session bypass | Critical | Fixed |
| Access enforcement hardening | Improvement | Implemented |
Context
These findings emerged from reviewing the raw Slack communications against the published release notes. The release notes did not originally capture these items.
Security findings should be reviewed separately and actioned through appropriate channels.