Boundaries

Security

KilnMD is designed around a simple invariant: the dashboard/API and user-hosted websites are different security boundaries.

Create account Pricing

No server-side plugin execution

The hosting platform receives generated static output. It validates paths, sizes, hashes, and metadata instead of executing vault plugins on the server.

Separate registrable hosted-site domain

Hosted user sites live on kilnmd.page or customer domains. The dashboard remains on dashboard.kilnmd.com.

Private storage, public Workers

Generated files are stored privately and served through the public Site Worker, which applies route and cache behavior.

No certification claim

This page describes the current design intent for private beta. It does not claim SOC 2, ISO 27001, HIPAA, or other third-party certification.