← AgentGuard
Security & Trust
This document answers common procurement and security review questions about AgentGuard. We're honest about what's shipped vs. planned — transparency builds trust faster than marketing.
Authentication & Access
Area Status Details
User auth
Current Email/password with bcrypt hashing, NextAuth JWT sessions
API key security
Current SHA-256 hashed before storage, prefix-only display, soft-delete revocation
Password reset
Planned Token-based email reset flow (v0.6.0)
API key rotation & expiry
Planned Key rotation, expiry dates, last-used tracking (v1.0)
SSO / SAML
Planned Planned for Team tier (post-1.0)
Encryption
Area Status Details
In transit
Current TLS 1.3 enforced by Vercel (dashboard) and Supabase (database)
At rest
Current AES-256 via Supabase Postgres transparent encryption
Secret handling
Current API keys never stored raw. Service secrets in env vars. No secrets in logs.
Data Handling & Privacy
Area Status Details
Tenant isolation
Current All queries scoped by team_id. No cross-tenant access possible.
Data retention
Current Auto-cleanup cron per plan: 7d (Free), 30d (Pro), 90d (Team)
Data capture
Current SDK never auto-captures prompts or responses. Only what you explicitly send.
On-demand deletion
Planned DELETE API for GDPR right-to-erasure (v1.0)
Team & Access Controls
Area Status Details
Team ownership
Current Single owner per team with full control
RBAC
Planned Owner/admin/member roles with team_members table (v0.7.0)
Audit logs
Planned API key CRUD, team changes, plan changes (v0.7.0)
Ingestion & Reliability
Area Status Details
SDK transport
Current HttpSink: batched, background thread, atexit flush. Failures logged, never crash.
Rate limiting
Current 100 requests/min per IP on ingest. Quota enforcement per plan.
Gzip compression
Planned Client-side gzip for batches (v0.8.0)
Retry with backoff
Planned Exponential backoff on transient failures, idempotency keys (v0.8.0)
Backpressure
Planned 429 with Retry-After header, client-side backoff (v0.8.0)
Supply Chain & Dependencies
Area Status Details
SDK dependencies
Current Zero runtime dependencies. Pure Python stdlib. One package to audit.
Open source
Current MIT-licensed. Full source on GitHub .
Optional integrations
Current LangChain integration uses try/except ImportError. Never required.
Incident Response
Area Status Details
Security contact
Current pat@bmdpat.com — 48-hour response commitment
Status page
Planned Public status page for ingest uptime (v1.0)
SLA
Planned 99.9% ingest uptime target (documented, not contractual until post-1.0)
Questions?
For security inquiries: pat@bmdpat.com
For general questions: GitHub Issues
Last updated: February 2026 (v0.5.0)
© 2026 BMD PAT LLC · MIT-licensed SDK · Zero dependencies