Ainara + NARA-1r: Safety & Safeguards — Technical & Executive
Ainara now runs on the NARA-1r family (NARA-1r / NARA-1r-max) with a layered safety architecture: jailbreak detection & mitigation, 18+ age-gating safeguards, child-protection systems, content moderation pipelines, human-in-the-loop escalation, and monitoring/audit trails. We combined model-level hardening, runtime filters, policy enforcement, and post-release red-teaming so the assistant can deliver helpful responses while minimizing harm and abuse vectors.
Amaro Than: API Keys — Penetration Test & Remediation Report
Amaro Than completed an independent penetration test and focused code review targeting how API keys are generated, stored, transmitted, and used. The assessment included attempts to decrypt keys in transit, compromise servers to exfiltrate keys from memory, and measure side-channel risks (CPU speculative execution / microarchitectural leakage). During testing, a memory-residency leak involving Redis and CPU prediction side-effects was observed, responsibly patched, and re-verified. At the time of retest no exploitable key material remained exposed; API key storage and handling are now hardened and logged. Full technical artifacts are retained for the security team.
Security Updates SQL Injection
Amaro Than recently completed an independent penetration test and focused code review covering the core social and dating modules (Netvorko and Amalipe). The assessment targeted authentication endpoints (signup, login, password reset), profile & comment flows, photo upload/delivery, and backend persistence (profiles, passwords). Tests included automated scans, manual verification, and targeted SQL-injection (blind, error, time-based, UNION-style) checks against API endpoints and web forms. Findings were triaged and remediated; no critical production-impact vulnerabilities remained at the time of retest. Full technical reports and retest artifacts are available to the security team on request.
Your data, encrypted by design
At Amaro Than, your data is protected end to end: all sensitive information is encrypted with AES-256-CBC, all connections use HTTPS, and private communications use end-to-end encryption so only the intended recipient can read them. Nothing sensitive is stored in raw form in our database—only encrypted or securely hashed values—so even if someone accessed the database, the data would remain unreadable. Our promise is simple: your story is yours, and our job is to keep it safe.
Amaro Than Passes Independent Penetration Testing
Amaro Than has officially passed an independent penetration test focused on SQL injection, confirming that no data was leaked and all systems remain secure. Under the supervision of CTO Ardit Berisha and tested by a global team of ethical hackers, the platform demonstrated strong protection against injection and data-access vulnerabilities. This milestone reinforces Amaro Than’s commitment to transparency, cybersecurity, and user trust—ensuring that every interaction within the ecosystem is protected by robust, modern security standards.
Latest security bulletin: Ainara + NARA-1r: Safety & Safeguards — Technical & Executive · Nov 12, 2025