Security first

We protect your code, data, and users the way you'd protect your own.

SOC 2 Type II ISO 27001 GDPR CCPA HIPAA-ready PCI DSS Level 1

TLS 1.3 in transit. AES-256 at rest. Customer-managed keys on Enterprise.

Every request authenticated. SSO/SAML. Hardware-key MFA enforced.

Sandboxed builds. Per-workspace network isolation. No shared compute.

Every action logged. 1-year retention. Streamable to your SIEM.

SOC 2 Type II, GDPR, CCPA, HIPAA-ready. Annual penetration tests.

Active bug bounty. 24-hour acknowledgment. Public hall of fame.

Need a security review?

SOC 2 reports, DPA, and pen-test summaries available under NDA.