Security and trust

Production automation should be constrained before it is clever.

Control boundaries

Deployment safety

Managed data protection

Managed backups stream to a tenant-scoped S3-compatible key, record size and SHA-256, and require explicit server-side encryption. Restore hydrates to a random mode-0600 file and verifies integrity before stopping the tenant hub. Production bucket, KMS, object-lock, and separate-host restore drills remain launch gates.

Current assurance status

Implemented

Required unit, integration, browser, secret-scan, dependency-audit, multi-architecture image, SBOM, image-scan, backup/restore, and BuildKit/registry gates.

Before managed GA

Independent security review, production infrastructure review, live provider and disaster-recovery drills, legal review, trademark clearance, and closure of all critical/high findings.

Report a vulnerability

Please follow the coordinated vulnerability disclosure policy and email security@reaperci.dev with impact, affected component, reproduction steps, and a safe contact method. Do not include customer secrets or exploit public systems.

← Back to ReaperCI