Lightrun Security

Your source code never leaves its infrastructure and only you have access to it at all times.

The Lightrun architecture ensures you manage the code and Lightrun’s components end-to-end effortlessly.

Lightrun is the only player in the field with a configurable, proprietary and patent-pending agent sandbox that ensures all Lightrun actions are indeed read-only.

We guarantee:

• No changes to application state
• No changes to source code
• No changes to your assets

The communication between all Lightrun components and our Management server is always established over industry-standard TLS 1.2 encrypted channels.

Lightrun supports hardening authentication:

• Authenticate and authorize users when requesting access
• Manage user roles granularly, with segregation of duties
• Leverage SSO or Google Login for identity management

Lightrun takes audit & compliance requirements very seriously.
Additionally, we support you with these mechanisms:

• Our configurable patent-pending agent sandbox
• A capping mechanism to ensure performance footprint thresholds are maintained
• Software composition analysis and vulnerability scanning supported by recognized industry tools to proactively mitigate vulnerabilities

Lightrun employs security best practices as a built-in part of our development process:

• Incremental security reviews of critical components
• Regular security penetration tests by an independent third party
• Software composition analysis and vulnerability scanning supported by recognized industry tools to proactively mitigate vulnerabilities

• Access to Lightrun facilities is restricted to authorized staff
• Our data center security is fully controlled by Amazon, including biometric identification, cameras, vehicle barriers and advanced intrusion detection systems.