What we store.
We built Sivero to analyze trust, not hoard source code. Total transparency into exactly what drops and what stays on our servers.
Never Stored
Evaporates after analysis
Raw pasted code
Code you paste is processed exclusively in-memory and discarded the millisecond the scan completes.
Permanent repo source
We clone your repository into a temporary runner, analyze the AST, and destroy the container immediately after.
Passwords & live tokens
When our scanner detects a hardcoded secret in your code, it redacts the exact string from the report to prevent side-channel leaks.
Full ZIP archives
ZIP files are unzipped directly into a volatile memory volume and purged as soon as the static analysis concludes.
Safely Stored
Kept to run your dashboard
Account email
Used solely for authentication, billing, and sending you PDF scan reports.
Project identifiers
The name of your project or repo so you can keep track of historical scans in your dashboard.
Scan metadata
High-level metrics like when the scan ran, how many files were processed, and the overall grade.
Findings & fix status
The filenames, line numbers, and vulnerability descriptions so you can read your report and mark items as fixed.