Home/Security

Security

The pause is the security model.

Etenos is designed so that AI work is observable and reversible: local by default, gated before every side effect, sanitized on sync, and recorded in an audit trail you can review.

principles

Six principles, enforced by design.

Local-first execution

The agent runtime runs on the developer's machine. Repository contents and command output are processed locally by default.

/01

Explicit approvals before side effects

Six gates — branch, patch, validation shell, commit, push, PR — each hold and ask before anything mutates your repo or filesystem.

/02

Sanitized control-plane sync

The cloud control plane receives sanitized activity summaries, not raw source or raw command output, unless an explicit future policy changes that.

/03

GitHub token handling

Connects through a GitHub App installation or personal authorization. Tokens are scoped to the installation; provider API keys are never collected.

/04

Agent registration & heartbeat

Each desktop agent registers with the control plane and emits a heartbeat, so an organization can see which agents are live and monitored.

/05

Audit trail

Approvals, executions, policy changes, workspace-trust changes, and remote actions are recorded for review and export.

/06

side-effect gates

Nothing mutates without approval.

Six gates stand between the agent and your repository. Each one holds, shows exactly what will happen, and waits. Read-only stages — polling, scanning, planning, context — never touch your code.

01BranchCreate or switch the working branch after preflight.

02Patch writeApply the exact unified diff to local files.

03Validation shellRun detected test / typecheck / build / lint commands.

04CommitStage and create the local commit with an editable message.

05PushPublish the branch to origin.

06Pull requestOpen the PR — draft or ready — with editable title and body.

Audit trail · what's recorded

13:42:05youApproved · branch create work/7-add-birthdayok

13:42:38syntaxisProposed · patch 3 files +47/−12logged

13:43:02youApproved · validation shell pnpm lintok

13:43:05syntaxisExecuted · pnpm lint + typecheck → passok

13:44:20youDenied · push to origin/maindenied

13:45:10adminPolicy change · require approval on commitlogged

13:46:00youWorkspace trust granted · etenos/mdx-portalok

approvalsexecutionspolicy changesworkspace-trust changesremote actions

GitHub token handling

Connects via GitHub App installation or personal authorization.

Access is scoped to the installation; tokens are not shared across orgs.

Provider API keys are never collected — Syntaxis uses your signed-in session.

PRs are opened by the bot identity with attribution to the approver.

Registration & monitoring

Each agent registers with the control plane on startup.

A heartbeat keeps live status current for the organization.

Monitoring surfaces which agents are active and on what work.

Remote actions and policy changes are themselves audited.

production readiness

What we hold ourselves to in production.

Etenos services are built to production expectations — not development shortcuts.

Real authentication & authorization

Per-endpoint rate limits

Encrypted secrets at rest

Staging / production separation

PostgreSQL persistence

Migration checks on deploy

Automated backups

Structured observability

No development credentials in production

enterprise roadmap

On the roadmap — not claimed as live.

We're explicit about what isn't here yet. The following are enterprise roadmap items, not current guarantees. If your evaluation depends on any of them, talk to us about timelines.

Talk to Etenos

SOC 2 examinationSAML / OIDC SSOSCIM provisioningSelf-host / VPCAir-gapped runtimeRegional data residency

Evaluate the model, not the marketing.

Read how the platform draws its data boundary, or bring your security team into a conversation.

How the platform works Talk to Etenos