๐๏ธ Verifying Signature
In order to ensure the authenticity and integrity of the Cimon image, it is signed using the cosign and sigstore tools. Therefore, verifying the signature proves that it was signed by our provided key, which gives confidence in the provided artifact.
๐๏ธ Fetching SBOM
What is SBOM?
๐๏ธ GitHub App Permissions
To enable Cimon's functionality, you must install our GitHub App and grant it the necessary permissions. This page explains why we require these permissions and how they are used.
๐๏ธ Cimon Privacy
At Cycode, we take our users' privacy seriously. As a result, Cimon collects and uses only the information that is required to deliver you a great and secure experience and to continue and improve it, and data that is no longer necessary is deleted.
๐๏ธ Vulnerability Disclosure Process
At Cycode, we are committed to providing a secure environment for our users. We understand the importance of security vulnerabilities and take measures to maintain them.