Testing the security of your project is allowed, but there are some limitations which include (and aren't limited to):
- Carrying out only specific types of tests,
- Complying to the rate limits,
- Following specific procedures.
For more information on this feature, please see the following page in the Platform.sh documentation:
https://platform.sh/trust-center/security/penetration-testing/