Lightrun logo

Lightrun Security

Secure dev-native observability guaranteed

Founded and run by experienced cybersecurity engineers, we are committed to protecting your assets!

Completely safe

Lightrun is ISO27001 compliant. Our policies are maintained, updated and communicated on a regular basis as part of our security awareness program.
Lightrun activity, actions and changes are logged and can be audited. To further assure all of our customers, we offer SaaS and self-hosted deployments.

Read the datasheet for more on-prem details

Security that’s baked in

Zero access to your source code

Read-only activity

All communication is encrypted

IAM, RBAC and SSO

Blocklisting & PII redaction

Secure product development lifecycle

Physical security

Get the Security datasheet

Guardrails that every enterprise needs

Zero access to your code

Your source code never leaves its infrastructure and only you have access to it at all times.

The Lightrun architecture ensures you manage the code and Lightrun’s components end-to-end effortlessly.

Read-only

Lightrun is the only player in the field with a configurable, proprietary and patent-pending agent sandbox that ensures all Lightrun actions are indeed read-only.

We guarantee:

  • No changes to application state
  • No changes to source code
  • No changes to your assets

Encrypted communication

The communication between all Lightrun components and our Management server is always established over industry-standard TLS 1.2 encrypted channels.

IAM, RBAC and SSO

Lightrun supports hardening authentication:

  • Authenticate and authorize users when requesting access
  • Manage user roles granularly, with segregation of duties
  • Leverage SSO or Google Login for identity management

Blocklisting & PII redaction

Lightrun takes audit & compliance requirements very seriously.
Additionally, we support you with these mechanisms:

  • Our configurable patent-pending agent sandbox
  • A capping mechanism to ensure performance footprint thresholds are maintained
  • Software composition analysis and vulnerability scanning supported by recognized industry tools to proactively mitigate vulnerabilities

Secure product development lifecycle

Lightrun employs security best practices as a built-in part of our development process:

  • Incremental security reviews of critical components
  • Regular security penetration tests by an independent third party
  • Regular security penetration tests by an independent third party
  • Software composition analysis and vulnerability scanning supported by recognized industry tools to proactively mitigate vulnerabilities

Physical security

  • Access to Lightrun facilities is restricted to authorized staff
  • Our data center security is fully controlled by Amazon, including biometric identification, cameras, vehicle barriers and advanced intrusion detection systems.

The secure way to troubleshoot your applications in real time and on demand

Secure

Security is baked into Lightrun. Your and your customers’ data stays airtight.

Rich integrations

We integrate with your customers’ observability stack: Datadog, Statsd, Logz.io and more.

Snapshots replace breakpoints

Insert breakpoints without breaking a thing – no downtime.

Robust observability

Observe your app from the code-level using logs, metrics and traces – all on demand.

Check out our FAQ
if you have any questions or contact us

This is the solution your enterprise has been looking for.

Start now with Lightrun Cloud
Talk with a Lightrun architect about on-prem