Warning: instance not to be available on the internet

Hello,

I installed a passbolt instance on a Debian 12 VM without any particular problems. I’ve configured a resverse-proxy with SSL certificate and so on. Everything’s up and running.

However, in the passbolt status page from the GUI, there’s a warning saying :

Make sure the instance is not publicly available on the internet.

What does it mean? Is there a particular security problem in leaving this instance on the Internet? If so, which ones?

Unless I’m mistaken, passbolt cloud instances are publicly available on the Internet.
What should be done to remedy this warning?

Thank you in advance for your help

I am also curious about this warning. I believe it is just a recommendation that the application is not directly exposed to the internet and a CDN endpoint is what should be exposed. It would be nice to have some clarity in the form of a post here or a FAQ page in the docs.