CodeRabbit is an AI-powered code reviewer that delivers context-aware feedback on pull requests within minutes, reducing the time and effort needed for manual code reviews. It provides a fresh perspective and catches issues that are often missed, enhancing the overall review quality.
CodeRabbit Inc recognises that the confidentiality, integrity and availability of information and data created, maintained and hosted by us are vital to the success of the business and privacy of our partners.
As a product, we understand the importance in providing clear information about our security practices, tools, resources and responsibilities within CodeRabbit Inc so that our customers can feel confident in choosing us as a trusted provider.
This Security Posture highlights high-level details about our steps to identify and mitigate risks, implement best practices, and continuously develop ways to improve.
Here are the controls implemented at CodeRabbit Inc to ensure compliance, as a part of our security program.
Situational Awareness For Incidents
Encrypting Data At Rest
Data Backups
Testing for Reliability and Integrity
Impact analysis
Limit Network Connections
External System Connections
Transmission Confidentiality
Anomalous Behavior
Capacity & Performance Management
Conspicuous Link To Privacy Notice
Regression Testing
Full Device or Container-based Encryption
Endpoint Security Validation
Code of Business Conduct
Roles & Responsibilities
Competency Screening
New Hire Policy Acknowledgement
Security & Privacy Awareness
Periodic Policy Acknowledgement
Automated Reporting
Incident Reporting Assistance
Risk Framing
Risk Assessment
Fraud
Assigned Cybersecurity & Privacy Responsibilities
Internal Audit using Sprinto
Periodic Review & Update of Cybersecurity & Privacy Program
Management Review of Org Chart
Management Review of Risks
Data Protection Impact Assessment (DPIA)
EU Representative
Testing
Customer Obligations
Chief Privacy Officer (CPO)
Asset Ownership Assignment
Data Governance
New Hire Security & Privacy Training Records
Periodic Security & Privacy Training Records
Updates During Installations / Removals