PDFPDF Size Reducer

Security

Security and processing model

PDF Size Reducer keeps the public workflow deliberately narrow: upload one PDF, compress it, compare sizes and manually download the result.

Processing controls

  • Only PDF uploads are accepted by the browser workflow and compression endpoint.
  • Compression runs server-side using PDF tooling in the deployment runtime.
  • Results are returned to the current request rather than published to a public file listing.
  • The interface does not auto-download the compressed result.

Browser protection

The application sends security headers for transport security, framing protection, content-type handling, referrer minimisation, permissions policy and a restrictive content security policy suited to the current app.

Vulnerability reporting

Security researchers and users can find the current reporting channel in /.well-known/security.txt.