The security of your LocalGov Drupal website should be given due consideration before launch.
Keeping abreast of Drupal security advisories is important. See https://www.drupal.org/security
To subscribe to Drupal security emails:, log in to Drupal.org, go to your user profile page and subscribe to the security newsletter on the Edit » My newsletters tab.
There are also a number of Drupal modules and best practice configurations to help increase the security of your Drupal site.
# Penetration testing
A penetration test was commissioned by Invuse in early 2023, the full report is available at the following url.
Invuse Limited - LocalGov Drupal (LGD) Web Application Penetration Test v1.0 (Redacted).pdf (opens new window)
# Key recomendations
The report generated some recommendations, which are summarised in: