Home

Awesome

Magento Security Checklist

This is a community sourced checklist of security measures to take before launching your store. Think of it as a pre-flight checklist so you don't forget something important because you've been in a headlong rush for the last few months to get all the features of your eCommerce site built.

This checklist will apply to only Magento 2.x versions.

Custom code

Extension security checklist

Magento Admin settings

Server settings

SSH access

Regular Maintenance

Secure Development processes

Testing environments

Magento Core

External security concerns

Additional resources