Security
Security isn't a bolt-on here, it's baked into the paved road. This is what the platform does for you by default, in plain language.
Your apps and data run on managed infrastructure in the European Union. No surprise regions, no data quietly shipped elsewhere.
Each project runs in its own container with its own storage, under clear memory and CPU limits, so one app can't reach into another.
API keys and config are stored as encrypted environment variables and injected at runtime, you never hard-code them into your repo.
Every access key and connection is scoped to a single project and can be revoked instantly. Revoking takes effect right away.
Every route on a deployed app requires a key unless you deliberately make it public. You don't have to remember to lock things down.
An app can only reach the places you allow. A compromised or runaway process can't phone home, mine crypto or exfiltrate data.
Every app is served over HTTPS with a valid certificate, issued and renewed automatically. There's nothing to configure.
Hard per-project limits and an automatic brake on abusive behaviour keep a single bad run from taking down the platform.
People sign in with GitHub, Google or Microsoft. We don't ask you to create or manage another password.
If you believe you've found a security vulnerability, please report it to security@denkops.com before disclosing it publicly. Give us a clear description and steps to reproduce, and give us a reasonable window to investigate and fix it. We don't take legal action against good-faith security research that respects our users' data and doesn't disrupt the service.