Security
Governance is the product. This is the posture.
Arkon exists because agent fleets need real controls, not promises. The same discipline the platform enforces on agents is the discipline we build under.
How the platform thinks about security
Boundaries before autonomy. Every agent runs inside a role: the tools it may use, the context it may see, the budget it may spend. Nothing is granted by default.
Gates before consequence. Actions that touch the outside world — spending, external communication, deployment — wait at an approval gate until an operator decides. A held gate physically blocks the lane; it is not a notification you can miss.
The ledger sees everything. Every turn writes a row: who acted, what it cost, what it touched. Attribution is not reconstructed after an incident; it is the normal operating record.
The kill switch is real. Stop one agent, one tool, or a tenant. It is deliberately visible, deliberately weighted, and exercised on purpose — a drill, not an emergency.
Tenants are walls, not labels. Every query, every job, and every record is tenant-scoped. One customer's fleet cannot see another's.
How we build
Secrets live in a vault, never in code or chat. Changes ship through reviewed pull requests behind automated secret and static-analysis scanning, and production deploys pass a human gate. Every privileged action is attributable to a person or a named agent. This very site shipped through that pipeline, under a work item on our own ledger.
Reporting a vulnerability
Email [email protected] with SECURITY in the subject line. Include what you found, where, and how to reproduce it. We read every report and will acknowledge yours within two business days.
Scope. This site (arkonhq.com) and the Arkon platform's public surfaces. Please don't test against production systems you don't own — a written report of the weakness is enough, and demonstrating it on others' data is out of bounds.
What we commit to. Acknowledgement within two business days. An honest severity assessment. A fix timeline proportional to impact. Credit if you want it, silence if you prefer. We will never take legal action against a good-faith report that respects the scope above.
Last updated 2026-07-13