Security & Privacy

Category scope

  • CSGA operates as an Enterprise Security Verdict Platform.
  • Trust claims must be interpreted through deployment boundary, telemetry boundary, and operator governance controls.

Beta policy

Deployment semantics

  • Local mode: security analysis and evidence handling stay in customer-managed boundary.
  • Connected cloud mode: approved operational metadata may be processed through connected services according to tenant policy.
  • Air-gap mode: no external network dependency for core local scanning operations.

Data handling

  • Scans analyze the content you provide for security findings.
  • Access is tenant-scoped and governed by roles.
  • Data access follows the permissions assigned by your tenant admins.
  • Customer source code and raw payload content are treated as customer-boundary data.

Telemetry semantics

  • Essential telemetry supports reliability and operational integrity.
  • Non-essential telemetry is governed by policy controls and support-managed configuration.

Logs and audits

  • Critical actions are logged and available to authorized users.
  • Use audit exports to support compliance reviews.

Customer responsibilities

  • Keep API tokens secure.
  • Follow internal security policies for data access.
  • Restrict access to scan outputs to authorized teams only.

Community participation

  • Voting and feedback are tenant-scoped and controlled by your policy settings.
  • Participation is opt-in and gated by approvals in the Policy tab.