Was this codebase audited by a security company? | Hacker News

Hacker Timesnew | past | comments | ask | show | jobs | submit

		ddesposito 40 days ago \| parent \| context \| favorite \| on: Show HN: Marco, a privacy-first, offline-first ema... Was this codebase audited by a security company?

isaachinman 40 days ago [–]

Yes, it was audited as per Google CASA (Cloud Application Security Assessment). This is an annual requirement.

The email scope is essentially the most restricted OAuth scope Google has, so the audit is pretty intense.

ddesposito 36 days ago | [–]

Its a very cool app!

isaachinman 35 days ago | | [–]

Thanks!

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact