Security & Trust — Governance
Cryptographic trust infrastructure designed to keep your source code private.
Security Controls
Verifiable Audits.
A historical ledger of compliance events is cryptographically signed using a local Merkle Tree, rendering your historical records tamper-proof and mathematically incontestable.
Isolation by Design.
All endpoint telemetry is secured via bidirectional mTLS with cryptographic device pinning, and multi-tenant data is strictly partitioned by organization-isolated database structures.
Zero Code Storage.
Code scanning is performed dynamically in temporary memory on the build runner or CLI host. Mima never writes, stores, or transmits your raw codebase files.
GitHub Read-Only Isolation.
Connecting repository data uses read-only OAuth flows. Mima has zero permission to write code, modify pull requests, or alter your repository settings.
Evidence chain integrity
Each compliance snapshot is hashed bottom-up into a Merkle tree. The root is signed and appended to your compliance ledger. Click verify to walk the path.