Safana Rails

Admin Dashboard

Sign in with Google to manage metrics, configurations, and plans.

Overview

Security posture summary · last 30 days

Detections Over Time

User Actions

Detection Heatmap

When secrets are most commonly detected (day × hour of day)

Findings

Secrets detected by type, trends, and repeat offenders

Secret Types Detected

Detection Trend by Type

Recent Detections

Repeat Offenders

Users who ignored warnings for the same secret type more than once

User Risk Ranking

Users sorted by ignore rate. Higher means more risk.

Inventory

Where and by whom secrets are being detected

Site Risk Breakdown

Top Users with Detections

All Sites

Every site where secrets were detected, with category and risk

All Users

Every user who has triggered a detection event

Event Explorer

Search, filter, and drill into all detection events

From to

Policies

Data loss prevention and compliance controls

Policy Coverage

Secret Detection Rules

AI Detection Rules

Secret Detection Rules

All rules are active. Customise which types trigger alerts on your plan.

Free, all rules on

Keys & Certificates

SSH Private Key
PEM Certificate
PGP Private Key

AWS

AWS Access Key
AWS Secret Key

Google & Firebase

Google API Key
Firebase Server Key

GitHub

GitHub PAT
GitHub OAuth Token
GitHub App Token
GitHub Refresh Token
GitHub Fine-Grained Token

GitLab

GitLab PAT
GitLab Runner Registration Token
GitLab Runner Token
GitLab Pipeline Trigger Token

Slack

Slack Bot Token
Slack User Token
Slack App Token
Slack Webhook

Stripe

Stripe Live Secret Key
Stripe Test Key

Payments & Commerce

Shopify Access Token
Shopify App Secret
Shopify Custom App Token
Shopify Legacy Private App Token
Plaid Client Secret

Databases

MongoDB Connection URI
PostgreSQL URI
MySQL URI
Redis URI
Elasticsearch URI

Cloud Platforms

Azure Client Secret
Azure Storage Account Key
Azure Connection String
DigitalOcean Personal Access Token
DigitalOcean App Token
DigitalOcean Refresh Token
Heroku API Key
Netlify Token
Dropbox Access Token

Secrets Management & Infrastructure

Vault Service Token
Vault Batch Token
Vault Recovery Token
K8s Service Account Token
Docker Hub Password

CI/CD & Dev Tools

CircleCI Token
Travis CI Token
Jenkins Crumb Token
Bitbucket App Password
Bitbucket OAuth Key
Bitbucket OAuth Secret
Linear API Key

Auth & Tokens

OAuth Client Secret
JWT Token
JWT in Local Storage

Messaging & Other

Twilio API Key
SendGrid API Key
Mailgun API Key
Facebook Access Token
Telegram Bot Token
Notion Token

AI Detection Rules

Sensitive content categories detected using AI, beyond regex patterns

Free, all rules on

Corporate Finance

M&A Documents
Financial Projections
Investment Memos

Strategy & Planning

Strategic Plans
Product Roadmaps
Pricing & Competitive Analysis

Legal & HR

Legal Agreements (NDAs, contracts)

Intellectual Property

Patent Filings

Custom Detection Rules

Pro

Define your own regex patterns for internal or proprietary secret formats

No custom rules defined. Upgrade to Pro to add your own patterns.

Site Allowlist & Blocklist

Pro

Trusted sites where secrets are permitted, and sites where they are always blocked

Secrets on these sites will not trigger alerts (e.g. your internal tooling)

Secrets on these sites are always blocked. User cannot override.

Action Enforcement

Pro

Override the default warn-and-decide behaviour for specific contexts

Ignore is not permitted when a secret is detected on an AI platform

Always prevent submission. No user override allowed.

Users must redact or cancel. Ignoring is not permitted.

Alert Notifications

Pro

Push detections to your team in real time

Post an alert to a Slack channel when a detection is ignored

Send an email to the security team on high-risk events

POST detection events to any endpoint: SIEM, Splunk, Datadog, etc.

User Exemptions

Pro

Exempt specific users from triggering alerts, e.g. security engineers who legitimately handle credentials.

No exemptions defined. Upgrade to Pro to manage user exemptions.

Settings

Account and subscription management

Account

Subscription Plan

Pro

You're on the free tier. Upgrade for org-wide enforcement, 90-day history, custom detection rules, and priority support.

  • Org-wide policy enforcement
  • 90-day event history
  • Custom detection rules
  • SIEM integration
  • Priority support