Menu
Start
CLI
Scenarios
Attack Packs
Reports
Workbench
Reference
Sign inGet started now
Public documentation

Settings and Members

Settings and Members

The Settings screen manages workspace-level controls after the first project exists: active project selection, member invites, upload privacy defaults, retention, API-key navigation, and billing links.

Active Project

Use the active project control to switch the Workbench between protected agent projects.

Project switching affects:

  • dashboard metrics
  • findings
  • runs
  • agents
  • CI setup
  • attack-pack state

Privacy Settings

Workspace settings include:

  • full transcript upload
  • redacted snippets
  • secret redaction
  • retention days

Defaults:

  • full transcript upload: off
  • redacted snippets: on
  • secret redaction: on
  • sanitized evidence retention: 30 days

These settings are reflected in the CI upload policy.

Members

Workspace members have:

  • name
  • email
  • role
  • status

Supported roles are:

  • owner
  • admin
  • member

Supported member statuses are:

  • active
  • invited

Invite teammates after the first upload lands so findings have owners and reviewers. Use roles to decide who can manage workspace settings, project API keys, billing links, and member access.

API Keys

Project-scoped API keys are created in Monitor. They authenticate uploads from local or CI environments.

Store API keys as CI secrets. Do not commit them to source control.

Retention

Workbench defaults to 30-day sanitized evidence retention. Retention controls are documented as a product setting and persisted in workbench state.

In production, retention should be enforced by the backend storage layer.

The Settings screen links to Billing so workspace administrators can review the current plan, seat count, plan state, and pricing defaults.

See Billing for plan details.