Prelint
Try for free
Security

Your code stays yours.

Prelint processes code diffs and product specs to review your PRs. Each organization runs on isolated infrastructure — separate containers, separate storage. We never train on your data. Here is exactly how.

How Prelint compares

TYPICAL AI TOOLS

  • Store code on vendor servers
  • Train on customer data
  • Require admin repo access
  • Execute code in sandboxes
  • Commingle data across tenants

PRELINT

  • Code stored in isolated containers
  • Zero training on customer data
  • Read diffs + post comments only
  • No code execution whatsoever
  • Isolated per organization

Tenant isolation

Each organization gets its own isolated containers and dedicated storage namespace. Your code is never shared with another tenant. All data encrypted at rest.

No training

Contractual zero-retention with all LLM providers. Prompts discarded after each response.

Encrypted everywhere

TLS 1.3 in transit. AES-256 at rest. Per-tenant keys.

Least privilege access

Read access to pull requests and contents. Write access to review comments and labels. No admin access. No org-level permissions.

Compliance

SOC 2 Type IIPlanned
GDPRCompliant
.prelintignoreAvailable
SSO / SAMLAvailable
Privacy Policy →Terms of Service →Subprocessors →

How your data moves through Prelint

1

PR opened

Read only

GitHub sends a webhook with diff metadata. Prelint reads the diff via GitHub API.

2

Content preprocessed

Filtered

Diffs and specs scanned for secrets and PII before analysis. Content exclusions applied via .prelintignore.

3

AI analysis

Zero retention

Diff and relevant specs sent to LLM with zero-retention agreement. Per-request encryption. Prompt discarded after response.

4

Review posted

Write

Prelint posts review comments on the PR via GitHub API. Labels applied.

5

Data isolated

Isolated

Each organization's code and data lives in an isolated storage namespace, encrypted at rest. Never shared with another tenant. Only review metadata retained for audit logs.

Frequently asked questions

Do you store my source code?

Code is stored in isolated, per-organization containers with dedicated storage. Each organization runs on tenant-isolated infrastructure — your data is never shared with another tenant and is encrypted at rest.

Which LLM providers do you use?

We use providers with contractual zero-retention agreements. Your code is never stored or used for training by any model provider.

What GitHub permissions does Prelint need?

Read access to pull requests and repository contents. Write access to post review comments and labels. No admin access required.

Can I exclude sensitive files from analysis?

Yes. Add a .prelintignore file to your repository or configure org-level exclusion rules. Changes are audit-logged.

Do you support self-hosting?

Enterprise plans include options for dedicated infrastructure and data residency requirements. Contact us for details.

Is Prelint SOC 2 certified?

We are pursuing SOC 2 Type II certification. Security questionnaire available on request.

Questions about security?

We are happy to walk through our security architecture, answer your questionnaire, or discuss your specific compliance needs.

Talk to us

Security questionnaire available on request