Security
Govern what agents can touch, keep zero source code retention, and audit every action. Security your team can verify
Compliance
Ellipsis is SOC 2 Type 1 certified, with Type 2 in progress. Controls cover security, availability, and confidentiality. Request our report at team@ellipsis.dev.
Transparency
Zero source code retention, and every agent action is logged and auditable. Security your team can verify, not just take on trust.
Least privilege
Admins choose which tools and MCP servers each agent can call, down to individual GitHub actions. Anything not on the allow-list, the agent simply cannot reach, so every agent runs with least privilege by default.
One pane of glass for every agent your team runs: which are active, what they shipped, what they cost, and how much they have spent today, across every repo.
Learn more →Set per-agent allow-lists for tools and MCP servers, and scope each agent to specific repos and branches. Then cap what it can spend per run, per day, and per month, so an agent never runs up a surprise bill.
Learn more →See the reasoning behind every change, not just the change. Each run records the agent's thinking, the tools it called, the tests it ran, and the diff it shipped. No black boxes.
Learn more →