Skip to content
Sentyn
Platform
Sentyn console · acme-prod
Owner coverage89.1%
Open findings174
Connectors4 active
IdentitySourceOwnerRisk
prod-ci-deployerAWS IAMunknowncritical
gha-release-tokenGitHubassignedhigh
lambda-audit-roleAWS IAMconfirmedmedium
evidence: redactedblast_radius: computedsync: read-only
Control plane

Tenant isolation, encrypted credentials, redaction pipeline, read-only connectors, append-only audit.

Learn more
Platform
Pillars
Pillars overview
Machine identity security
Discovery and inventory
Governance and proof
Integrations
Connectors
AWS IAM
GitHub
Azure Entra
Kubernetes
Start
Guided review
Demo walkthrough
Validate sync
Owner queue
Export audit
Book walkthrough
The checklist we use before design-partner demos.
Product
Sentyn console · acme-prod
Owner coverage89.1%
Open findings174
Connectors4 active
IdentitySourceOwnerRisk
prod-ci-deployerAWS IAMunknowncritical
gha-release-tokenGitHubassignedhigh
lambda-audit-roleAWS IAMconfirmedmedium
evidence: redactedblast_radius: computedsync: read-only
Product console

Inventory, ownership, findings, graph, remediation preview, reports, and audit in one evidence model.

Learn more
Capabilities
Console
Overview
Inventory
Ownership
Findings
Access reviews
Capabilities
Workflow
Discover
Assign owner
Triage finding
Preview fix
Export proof
Services
Assessments
Cloud assessment
Infra and CI/CD review
AI agent review
Audit evidence package
Talk to us
Scoped session on your cloud and GitHub footprint.
Use cases
Teams
Cloud security
Privileged review
Multi-account visibility
Blast radius
Teams
Identity
Unknown owner cleanup
Owner conflicts
Attestation
Teams
Audit / GRC
Board prep
Compliance evidence
Connector review
Lifecycle
Five-step loop
Discover
Assign
Prioritize
Preview
Prove
Book a walkthrough
See unknown owners in your first session.
Knowledge
Learn
Knowledge center
Resources
Documentation
Use cases
Docs
Documentation
Security model
Connectors
Deployment
Trust packs
Company
About
Principles
What we are not
Enterprise teams
Contact
Contact
Get started
Book demo
Security review
Assessment inquiry
Book a walkthrough
30 minutes to your first evidence-backed finding.
Contact
Book a walkthrough
Sentyn

Evidence before alerts. Machine identity security for teams that need names, owners, and audit proof.

Book a walkthrough

Product

OverviewConsole tourPlatformPricing

Services

Cloud assessmentInfra reviewAI agentsAudit package

Use cases

Cloud securityIdentityAudit / GRCLifecycle

Knowledge

ResourcesDocumentationSecurity modelAboutContact
© 2026 Sentyn. All rights reserved.
SecurityPricingsentyn.io

Documentation

Security model, connectors, and deployment

What we collect, what we never store, how tenant isolation works, and how to run the demo stack locally.

Read the FAQ
Knowledge center

What we collect

Metadata and redacted evidence only. Read-only connector sync.

  • IAM role and policy metadata
  • GitHub app, PAT, and deploy key metadata
  • Service account external IDs and connector source
  • Owner signals with evidence JSON
  • Redacted secret fingerprints and locations
  • Relationship graph edges for blast radius
  • Append-only audit events

What we never store

Fail-closed redaction before persistence, API, exports, and logs.

  • Raw secret values or API key plaintext
  • Private keys or certificate private material
  • Connector credential payloads after write
  • Provider write tokens beyond read-only scope
  • Behavioral detection profiles or NHIDR models

Security model

How Sentyn handles tenancy, credentials, secrets, audit, and connector trust.

Tenant isolation

PostgreSQL row-level security on every tenant table. API never trusts tenant IDs from request bodies. Cross-tenant negative tests required for new features.

Credential envelope

Connector credentials encrypted through a KMS abstraction. API returns status only. Logs and responses never echo credential payloads.

Redaction pipeline

Secrets stripped before persistence, API responses, reports, logs, and webhooks. Tests use fake secrets and assert full values never appear.

Append-only audit

Sensitive writes fail closed if audit append fails. Tenant-scoped events for connector setup, owner assignment, and export actions.

Read-only connectors

Discovery connectors require least-privilege read scopes only. Permission manifests must exist before any real credential is accepted.

Honest maturity labels

Production, beta, demo, and fixture labels match backend proof tests. Website and product use the same labels.

Connectors and permission artifacts

Each connector ships with minimum-permission manifests, data-collected and data-not-collected lists, and maturity labels that match backend proof tests.

  • AWS IAM and GitHub App: production-ready with full permission docs
  • Azure Entra, Kubernetes, CloudTrail: beta with gated pipeline tests
  • Vercel, Supabase, Cloudflare: platform connectors with read-only API scopes
  • GCP IAM, Okta, GitLab, Vault: beta or planned with honest labels
  • Connector permission resources

Deployment and private runner

Docker Compose for local demo. Private connector runner design for VPC metadata-only egress. Full deployment runbook in the product docs.

  • Health endpoints for API, worker, and database
  • Environment variables documented per service
  • Private runner for VPC-only connector egress

Trust packs

Permission artifacts per connector for security review calls. Available through the trust center in the product.

Request trust packs during a security review or design-partner onboarding call.

Audit export guarantees

Exports are tenant-scoped, redacted, and append-only audit events accompany sensitive actions. No raw secret values in reports or CSV downloads.

  • Category landscape for procurement

Further reading

  • Sentyn FAQ for GRC teams
  • Review checklist
  • Category landscape
  • Connector permission docs

Security review call?

We walk through the security model, trust packs, and what Sentyn never stores with your identity and GRC teams.

Talk to us