00 · Security

Built for shipping with agents.

Self-installed apps with least-privilege scopes, per-workspace data isolation, hash-chained audit log, and a clear trust contract. We’d rather earn audits slowly than ship features that compromise them.

01 · Scopes

Least-privilege Slack & GitHub.

Slack scopes: channels:history · chat:write · commands · groups:history · im:history · users:read
GitHub permissions: checks:write · contents:read · metadata:read · pull_requests:read
Selected-repo: You install the GitHub App on a single repo first; org-wide is opt-in.
Uninstall: Remove the app at any time from Slack or GitHub admin pages.

02 · Data

Per-workspace isolation, hash-chained audit.

Postgres row-level security: every query is scoped to the workspace ID on the session token.
Audit table is hash-chained — each row carries the SHA-256 of the previous row, making silent edits cryptographically detectable.
Slack message bodies and GitHub PR diffs are stored with workspace-scoped encryption.
Per-org export and delete via the dashboard or by emailing team@aideps.dev.

03 · Approval gates

Human-required for the paths that hurt.

Default-on gates on packets touching billing/, auth/, schema migrations, or any infra config. Reviewers approve in-app or via Slack interactive button. Agents never auto-merge.

04 · What we don’t do

Trust is what we don’t do.

We don’t train models on customer code.
We don’t sell or share submissions.
We don’t demand org-wide GitHub permissions.
We don’t auto-merge PRs.
We don’t replace your reviewer — we hand them better-shaped diffs.
We don’t claim certifications we haven’t earned.

Questions?

Email team@aideps.dev with security review questions, deployment scope, or your team’s checklist. We respond within 24h.

Start Pilot →