Security at Gitpod
Gitpod is trusted by over 1M developers and companies that are moving their dev environments to the cloud.
Trusted by 1.5M+ developers
Security program
Security operations
Gitpod is a key part of our customers’ software development life cycle. A top company priority is securing its product, people and systems.
Product security
The platform was developed with security front and center, including how it’s built and deployed.
Compliance
Gitpod is SOC 2 Type II compliant and conducts pentesting at least annually. The company is also GDPR compliant.
Vulnerability disclosure
Gitpod gratefully welcomes feedback from users, researchers and the general public. Report concerns here.
Just want to say I love gitpod and use it every day at a high-security organization. During this exercise, Gitpod was very resilient and I'm incredibly impressed with the thoughtful and in-depth approaches to sandboxing. Cheers and thanks for all you do to keep developer environments safe.
Dariush Houle, Staff Software Engineer at PlexTrac
Thanks for your support
Big thanks the following people who responsibly disclosed their security findings.