Cloud Data Disclosure
Anonymous portions of your scan are sent to Threatrix cloud environment to be matched with our cloud knowledge base.
Data is transmitted to our server using 256bit encryption.
None of the data that's transmitted to our cloud is ever persisted. It's stored in memory during processing and immediately expunged from memory after use.
Your scan results data are stored in your local, on premise, database for your Threatrix Hybrid deployment and only available to you. Threatrix does not have access to your scan results.
The following data is sent to our cloud with every scan:
Software bill of materials for each supported dependency manager in your project. This data is used to build a dependency tree for declared dependencies and returns the associated licenses and vulnerabilities.
Random cryptographic hashes derived from portions of your source code. This data is used to determine what parts of your source code are open source and return the associated provenance and license data.
source file names
source file size
Last updated