- All HTTP request analysis happens locally using Ollama
- No external data transmission required for core functionality
- Complete control over processed data
- GPU-accelerated analysis (Enterprise Beta only)
- Explicit opt-in required
- Data encrypted in transit (TLS 1.3)
- No persistent storage of customer data
- Processing data deleted immediately after analysis
- Proxy runs on localhost (127.0.0.1) by default
- No external network access required for basic operation
- All external connections clearly documented
- HTTP requests/responses processed in memory
- Optional local storage in SQLite (encrypted at rest)
- No telemetry or usage tracking without consent
If you discover a security vulnerability, please report it to:
- Email: security@keyvan.ai
- Response Time: Within 48 hours
- Disclosure: Responsible disclosure policy followed
| Version | Supported |
|---|---|
| 4.0.x | ✅ |
| < 4.0 | ❌ |
When using VULNA:
- Run in isolated environment for sensitive targets
- Review generated PoCs before execution
- Use latest version for security updates
- Configure firewall rules for proxy access