Security at Gitpod

Gitpod is trusted by over 1M developers and companies that are moving their dev environments to the cloud.

Trusted by 1M+ developers

Security program

Sun Ellipse lines Ellipse lines
Secure Lock

Security operations

Gitpod is a key part of our customers’ software development life cycle.  A top company priority is securing its product, people and systems.

View trust center

Product security

The platform was developed with security front and center, including how it’s built and deployed.

View Security
SOC 2 & GDPR Compliance


Gitpod is SOC 2 Type II compliant and conducts pentesting at least annually. The company is also GDPR compliant.


Vulnerability disclosure

Gitpod gratefully welcomes feedback from users, researchers and the general public. Report concerns here.

See Disclosure Policy

Just want to say I love gitpod and use it every day at a high-security organization. During this exercise, Gitpod was very resilient and I'm incredibly impressed with the thoughtful and in-depth approaches to sandboxing. Cheers and thanks for all you do to keep developer environments safe.

Dariush Houle, Staff Software Engineer at PlexTrac

Thanks for your support

Big thanks the following people who responsibly disclosed their security findings.