_private/qwestly-private-docs/SOC2/evidence/vulnerability-scanning/Third Party Vuln Scan Scope - Vercel.md

Third Party Vulnerability Scan Scope — Vercel

Status: N/A — Covered by Vercel's Third-Party Penetration Testing

Our application is deployed on Vercel. As the infrastructure provider, Vercel conducts regular penetration tests with independent third-party firms, in addition to daily code reviews and static analysis.

Reference: Vercel Security Documentation

Therefore, this control is marked N/A for our environment.