Security & Privacy
Category scope
- CSGA operates as an Enterprise Security Verdict Platform.
- Trust claims must be interpreted through deployment boundary, telemetry boundary, and operator governance controls.
Beta policy
- Beta security policy: Beta Security Policy
Deployment semantics
- Local mode: security analysis and evidence handling stay in customer-managed boundary.
- Connected cloud mode: approved operational metadata may be processed through connected services according to tenant policy.
- Air-gap mode: no external network dependency for core local scanning operations.
Data handling
- Scans analyze the content you provide for security findings.
- Access is tenant-scoped and governed by roles.
- Data access follows the permissions assigned by your tenant admins.
- Customer source code and raw payload content are treated as customer-boundary data.
Telemetry semantics
- Essential telemetry supports reliability and operational integrity.
- Non-essential telemetry is governed by policy controls and support-managed configuration.
Logs and audits
- Critical actions are logged and available to authorized users.
- Use audit exports to support compliance reviews.
Customer responsibilities
- Keep API tokens secure.
- Follow internal security policies for data access.
- Restrict access to scan outputs to authorized teams only.
Community participation
- Voting and feedback are tenant-scoped and controlled by your policy settings.
- Participation is opt-in and gated by approvals in the Policy tab.