Defaults
Start with secrets, deletion, external sharing, force pushes, and infrastructure changes.
Feature
Policies
Policies say what agents can do, what gets denied, and what needs approval.
Purpose
Policies say what agents can do, what gets denied, and what needs approval.
Team rules
Add rules for production systems, repositories, providers, and sensitive folders.
Enforcement
CISO-managed policy cannot be disabled locally by employees.
Policy rule
Secret fileshold
Force push maindeny
Production deployapproval
Where You See It
Start simple. The same idea grows as your setup grows.
Individual localDesktop client
Configure and review locally.
Individual cloudDesktop plus account surface
Cloud sync, no dashboard.
OrganizationDashboard and clients
Admins configure policy; employees follow it.
Private CloudCustomer-hosted dashboard
Same concepts, customer-owned backend.