_private/qwestly-private-docs/SOC2/evidence/vulnerability-scanning/Third Party Vuln Scan Scope - Vercel.md
Third Party Vulnerability Scan Scope — Vercel
Status: N/A — Covered by Vercel's Third-Party Penetration Testing
Our application is deployed on Vercel. As the infrastructure provider, Vercel conducts regular penetration tests with independent third-party firms, in addition to daily code reviews and static analysis.
Reference: Vercel Security Documentation
Therefore, this control is marked N/A for our environment.