Report a Security Vulnerability
Accepted CVEs in Sourcegraph Releases
Software Development Life Cycle (SDLC)
We're here to help so reach out to us at [email protected] with any questions you may have. Sourcegraph employees can reach us in the #discuss-security Slack channel or tag us using @sourcegraph/security on GitHub or @sourcegraph/security-code-review for a code review.
Sourcegraph's security team puts great importance on verification and attestation through industry standards when it comes to our security practices and posture. Please find all the information on attestation evidence (SOC 2, pentests, etc.) and our Security Trust Portal here.
<aside> 🛡️ Security Trust Portal
Please visit our Security Trust Portal for all of Sourcegraph's latest information on the security, reliability, privacy, and compliance of our product.
</aside>