Last Updated: January 10, 2026

Security Policy

Proactive defense and responsible disclosure. Our commitment
to infrastructure integrity and user safety.

1. Infrastructure Security

ShekharIT operates as a purely static website. This architectural choice inherently minimizes our attack surface by removing server-side databases and dynamic processing from the primary serving layer.

  • HTTPS Everywhere: All traffic is served over an encrypted connection using TLS 1.3 standards.
  • Content Delivery Network (CDN): We utilize a globally distributed CDN to ensure availability and mitigate DDoS attacks.
  • Strict Content Security Policy (CSP): We implement headers to prevent Cross-Site Scripting (XSS) and other code injection attacks.

2. Responsible Disclosure

We value the contributions of the security research community. If you discover a potential vulnerability in our infrastructure or content, we encourage you to report it to us.

  • Reporting: Please send a detailed description of the vulnerability to security@shekharit.com.
  • Safe Harbor: We pledge not to pursue legal action against researchers who discover and report security issues in good faith and in accordance with this policy.
  • Response: We aim to acknowledge receipt of reports within 48 hours and provide a timeline for remediation.

3. Data Protection

Consistent with our "Data Minimization" philosophy, we do not store sensitive user data.

  • No User Accounts: There are no login mechanisms, removing the risk of credential theft.
  • No Payment Processing: We do not process or store payment information directly on our servers. All support contributions are handled by trusted third-party processors.

For more details on how we handle data, please refer to our Privacy Policy.

4. Third-Party Integrations

While our core is static, we may utilize third-party services for specific functionality (e.g., analytics, form handling). We rigorously vet these providers for security compliance.

  • Analytics: We use privacy-focused analytics tools that do not track individual users across the web.
  • External Assets: Any external scripts or fonts are loaded from trusted sources with integrity checks (SRI) where applicable.