Secret Handling
API and approval keys are hashed and never logged in raw form.
Private By Design
The V2 foundation protects keys, signatures, approval status, indexing posture, and restore evidence.
API and approval keys are hashed and never logged in raw form.
Signed manifests are validated on every verification flow.
Restore records reject secret-like notes and store hashes, not backup contents.
Review actions reject secret-like text and stay customer-owned.
Risk, usage, and resilience evidence is metadata-only; no source payload exposure.