Security Overview
Scanner-lite is designed for a low-friction security review by running inside the customer's own Databricks workspace and avoiding external data movement.
Security Commitments
- No customer telemetry leaves the workspace in scanner-lite mode.
- No production Databricks resources are modified.
- Least-privilege access is documented and encouraged.
- Scanner output is written to a customer-owned schema.
- Public collateral uses synthetic data only.
Recommended Controls
- Run the scanner with a dedicated service principal or authorized admin identity.
- Limit output schema access to the diagnostic team.
- Review scanner output before sharing it outside the customer's organization.
- Mask or aggregate user-level details where required by company policy.
- Delete diagnostic outputs according to customer retention policy.
Read-Only Scope
The scanner reads operational metadata from Databricks system tables and optional customer-provided BI metadata. It does not require production table data, cluster manage permissions, warehouse manage permissions, job edit permissions, dashboard edit permissions, or external network access.
Vulnerability Reports
Report suspected scanner package vulnerabilities to support@sig.ai. Include the package version, notebook step, and a redacted description of the issue. Do not include secrets, tokens, or sensitive customer telemetry.