Skip to content

Security & privacy

Honest controls for an MVP. We tell you what leaves your machine and what does not.

Private by default

PatchMesh never uploads your whole repository and never makes private code public by default.

Opt-in publishing

Publishing to organisation or public scope requires a separate, explicit human confirmation an agent cannot supply.

No training on your code

Your source is not used to train models. Capsules are retrieved, not ingested for training.

Namespace isolation

Personal, organisation and public artifacts are stored under disjoint, content-addressed key spaces.

Content hashing

Every artifact is SHA-256 addressed and verified after retrieval; digest mismatches are rejected.

Provenance & licence

Source, commit, contributor and SPDX licence are preserved and shown before any download.

Secret scanning

Regex + entropy scanning and redaction run before any remote transmission; secrets never leave or hit logs.

Local-only mode

A no-remote-code mode lets only task text, metadata, versions, hashes and fingerprints leave the machine.

Sanitised external search

Before any GitHub/public request, a disclosure shows exactly what is sent; source, repo names and secrets are blocked by default.

Unverified external candidates

GitHub results are commit-pinned, unverified candidates — never trusted until reviewed, scanned and tested.

Import quarantine

Public imports enter a quarantine with licence/security/validation checks and explicit human approval before use.

Untrusted retrieved content

README/code/comments from retrieved repos are treated as data, never as instructions to the PatchMesh agent (prompt-injection safe).

Honest limitations

  • • Hashes, embeddings and structural fingerprints can reveal limited information and should be governed by organisation policy.
  • • Central validation of untrusted code is disabled by default; validation is client-reported for the deployed MVP. Run validation locally.
  • • Retrieved code is untrusted until you review and test it locally.
  • • This is engineering tooling, not legal advice; confirm licence obligations independently.