Our primary goal is to ensure the protection and confidentiality of sensitive data stored by users on open-webui.

If you discover a security issue within our system, please notify us immediately via a pull request or contact us on discord.

We regularly audit our internal processes and system's architecture for vulnerabilities using a combination of automated and manual testing techniques.

We are planning on implementing SAST and SCA scans in our project soon.