Security

All traffic to repowise.dev and our API is TLS 1.2+ enforced. Source code is cloned only over HTTPS or signed GitHub App installation tokens; no SSH keys leave your environment.

The primary database (Supabase Postgres) is encrypted at rest. Sensitive columns — GitHub App access tokens, future SSO metadata, integration credentials — are additionally encrypted with application-level keys before being written.

Each indexing run executes inside an ephemeral Modal container with no persistent disk and no network access to other tenants. The cloned working tree is wiped at container exit; only the derived artifacts (graph, wiki pages, hotspots, decisions) persist to your tenant's rows.

Access to a snapshot is gated on the authenticated user's ownership of the underlying repository. Workspaces add explicit membership. Production database access is limited to a small set of named engineers and is logged.

API keys (where available) are scoped, revocable, and rate-limited. Keys are shown to you exactly once at creation; we store only a one-way hash.

Service-to-service credentials live in our hosting providers' secret stores, never in source. We rotate provider keys quarterly and immediately on any suspected exposure.

If you believe you have found a security issue, please email hello@repowise.dev with steps to reproduce. We acknowledge reports within 2 business days and aim to remediate critical issues within 7 days. Please give us a reasonable window before public disclosure; we credit good-faith reporters in release notes.

On detection of a confirmed incident affecting customer data, we will notify affected customers without undue delay (and, where required, within statutory breach-notification windows) with a description of the incident, scope, and remediation.

We are an early-stage company. SOC 2 Type 1 attestation is on the roadmap; ISO 27001 and HIPAA-eligibility (BAA) are available under enterprise agreements when required. Current customers can request our latest security questionnaire response at hello@repowise.dev.

For organisations with strict data-residency or air-gap requirements, the OSS CLI runs entirely inside your infrastructure and inherits your controls. Your code never leaves your network. See the GitHub repository for installation and operation guides.