Security

Assessment support is designed around evidence boundaries and secret avoidance.

Support requests should never include passwords, API keys, private tokens, credentials, or raw private files. Assessment data is scoped to the relevant workspace and assessment.

SecretsDo not send

Basic filtering blocks common credential patterns in support requests.

ScopeWorkspace bound

Authenticated support requests are tied to the current workspace or assessment.

Public supportNo file upload

The public form does not accept attachments or arbitrary assessment ownership claims.