traceredact · console

Project

Not connected

connect to a project

Send your first event

Install the SDK, point it at this API with the project's ingest key, and redact. Raw values never leave your process.

or click “+ Send test event” above. Tip: test a policy locally with traceredact scan — never paste real data into the console.

Incidents — fired when a secret is found (PII isn't alerted on by default). Deduped per leaked secret (occurrence count rises instead of flooding). Prod = critical.

Sev	Title	Where	Seen	Last
no alerts — nice 🎉

Delivery & heartbeat (optional)

Push incidents to Slack and get warned when a service goes quiet. Both optional — leave blank to disable.

Slack incoming-webhook URL (https) Heartbeat: expected max minutes between events (alerts after 3× the gap)

Heartbeat needs a periodic poke. Add a cron job:

*/10 * * * * curl -fsS -X POST -H "Authorization: Bearer trk_admin_local" http://localhost:8000/v1/heartbeat/check

SIEM webhooks (Team+)

Deliver HMAC-signed incident events to your own HTTPS endpoint (SIEM/SOAR). Payloads carry incident metadata only — never raw values. Verify with the X-TraceRedact-Signature header.

HTTPS endpoint URL

URL	Status	Last attempt
no endpoints

Where each redacted event came from — code origin (file:line · function), service/env — so you can trace a finding back to the source. Never any raw values.

Time	Source	Origin	Findings	Categories
no events yet

Detector	Count
no findings yet

Ingest keys for this project. Rotate by minting a new key, deploying it to your SDK, confirming it shows a recent "last used", then revoking the old one. The full key is shown once, at creation — store it now.

Label	Key	Status	Last used	From IP
no keys

Immutable activity log for this project — who changed what, when (projects, policy, keys). Read-only.

Time	Actor	Action	Target	Details
no activity yet

Plan, usage and subscription for your organization. Upgrades open Stripe Checkout; “Manage billing” opens the Stripe customer portal.

connect to load billing

Data-subject controls for your organization (GDPR). We never store raw values, so an export carries metadata only — never secrets, API keys or Slack webhook URLs.

Export my data · right of access (Art. 15)

Download a complete, machine-readable copy of everything we hold for your org — profile, projects, key metadata, events, findings, alerts, policies and the activity log.

Delete organization · right to erasure (Art. 17)

Irreversible. This permanently erases all of your org's data and revokes every API key. Preview first to see exactly what will be deleted. Cancel any active subscription beforehand.

Policy for the selected project (JSON). Save → the SDK pulls it on its next poll. Test changes locally with the FOSS CLI; don't paste real data here.