We know that your source code is one of your most valuable and sensitive assets. For most development teams, it's a literal representation of your most important work product.
CodeStream servers do not require access to your source code. To establish links between discussion threads and blocks of code, we use commit IDs and line number offsets, which are captured by the IDE when the thread is created. This approach allows us to build the service without requiring access to the source tree itself.
CodeStream is committed to helping our users understand the rights and obligations under the General Data Protection Regulation (GDPR), which took effect on May 25, 2018. We have introduced tools and processes to ensure our compliance with requirements imposed by the GDPR and to help our customers comply as well.
If you think you have found a security issue, please email us at email@example.com. Please do not publicly disclose the issue or any related information until we have had a chance to review it and respond to you.
CodeStream provides monetary rewards, up to $5000, for properly reported security issues. The reward is determined by the severity of the issue, the percentage of users impacted, and the likelihood of encountering the vulnerability under normal use of our service.
Your team knows a lot about your code but the knowledge is locked inside the heads of individual developers.
CodeStream helps to capture and share that knowledge, making your team happier, more productive and more resilient.