Security

Code-Inspector's Security

Last revised on June 21st, 2021


In-a-Nutshell

XCoding Labs, LLC ("We" or "Us") owns the platform that performs the code analysis. We do not own or claim any ownership of the source code sent to our platform.

We do not keep the source code on our servers. Only the results of our analysis are kept.

User credentials (passwords, tokens, etc.) are being encrypted and never kept clear on our servers at any moment.

If you have any questions regarding this security policy, please contact us.

Source Code Security

Source code is being automatically deleted after analysis.

We embrace the least privilege and use only the minimum number of privileges to perform an analysis.

Payment and Credit Card

We do not store any credit card information of any kind. Our payment infrastructure relies on Stripe that is certified to PCI Service Provider Level 1.

We embrace of the least privilege and use only the minimum number of privileges to perform an analysis.

Hosting

Our system is hosted on Amazon Web Services (AWS). Credentials are shared only among XCoding Labs, LLC developers.

Backups are managed by AWS services. No data is stored outside of AWS for normal operations.

Communications

All communications, either with the user or with third-party services, are encrypted using HTTPS and TLS 1.2.

Reporting a security issue

Security is fundamental to us and if an issue is found, we will take responsibility and fix it. If you find a potential vulnerability or have any questions, please contact us.