Reporting:

• Please report security issues privately to Aria Compute Company.

Operational guidance:

• Treat the desktop as high-privilege access to the container.
• Prefer exposing KasmVNC via an authenticated reverse proxy rather than publishing ports.
• Terminate TLS at your ingress/proxy layer.