What we store.
We built Sivero to analyze trust, not hoard source code. Here is the plain-English version of what is kept and what is not.
Never Stored
Evaporates after analysis
Raw pasted code
Pasted code is used to generate the scan result, but it is not kept as part of your saved report history.
Permanent repo source
Sivero does not keep a permanent copy of repository source code in your account after the scan completes.
Passwords & live tokens
Secret values found during scanning are not meant to become reusable stored credentials in your account history.
Full ZIP archives
Uploaded ZIP archives are analyzed for the scan, but the full archive is not stored with your saved reports.
Safely Stored
Kept to run your dashboard
Account email
Used for authentication, billing, and sending account or notification emails.
Project identifiers
The name of your project or repo so you can keep track of historical scans in your dashboard.
Scan metadata
High-level metrics like when the scan ran, how many files were processed, and the overall grade.
Findings & fix status
Saved report findings, filenames, and remediation details so you can revisit the report later.