Forge Component Vulneribility

I am wondering to what extent does OS platform mitigate the security risk that is exposed by Forge component  that is not created by Outsystems Lab?



Nothing, besides already existing security measures.

If the forge-component contains malware, well, it's your responsibility to check for it.

But that is my guess :)


Hi Barong,

OutSystems Forge is an open source repository for people to share their projects. All projects shared in the Forge follow a BSD licensing model, which defines that the project’s code is provided as-is (you can check 'What do you mean by “open source projects”?' section on Forge FAQ). As such, OutSystems doesn't validate the projects that are in Forge repository.

You can find more information on Forge FAQ, available on the following link:

Hope it helps!