security
Data we store (and don't store)
Inventory of what's persisted and what's discarded after a run.
We store
- Control evaluation results
- Resource IDs and names
- Run metadata and scores
We don't store
- Secrets, keys, or connection strings
- User data inside your resources
- Network traffic