Security & Trust

By Specship · Last updated June 4, 2026

Built so an AI agent can’t hurt you.

Specship runs an autonomous agent against your code and tickets. That only works if the permission model, the credential model, and the cost model all give you a kill switch. Here’s how each of those works.

Direct answer: teams should evaluate AI coding agent security by native OAuth design, encrypted credential storage, scopes, repository permissions, audit logs, runner isolation, budget controls, protected paths, and human override before allowing autonomous code changes.

Native OAuth with encrypted vault storage.

Live ClickUp access uses native OAuth. Integration tokens are encrypted in Specship’s vault, decrypted only for scoped integration calls, and audited through the job lifecycle.

GitHub · native ClickUp · native adapters · MCPs

Budget controls before autonomous runs.

Specship is in private beta, so public pricing is not final. The product control model emphasizes daily caps, run visibility, hard pause controls, and budget telemetry before teams scale usage.

Daily budget cap · hard pause · run telemetry per project

Tested by another agent before merge.

Every PR is reviewed by Gemini Code Assist and CodeRabbit by default. The Specship agent then addresses each comment individually with per-comment fixed / won't-fix replies before the PR can merge.

Gemini · CodeRabbit · your reviewers
The receipts

What we ship today.

No badges we haven’t earned yet. Where something’s in progress, we say so.

ControlDetailStatus
Encrypted env vaultAES-256-GCM at rest with a per-record IV. Master key held outside the database; per-org KMS planned for Enterprise. Decrypted only inside the worker process at job time.Live
Encrypted OAuth token vaultNative integration tokens, including ClickUp, are encrypted at rest and decrypted only for scoped integration calls. Specship no longer positions a third-party OAuth custodian as the default integration layer.Live
Audit log on every actionEvery ticket pickup, commit, branch push, comment, and merge writes an immutable audit record.Live
Native integration scope manifestEach native integration and MCP adapter declares minimum scopes before it can run. Deploy-time checks flag scope drift before a workspace can rely on the adapter.Live
Per-runner isolation + ephemeral databasesCoding jobs run in isolated working trees. Test runs can provision per-run Postgres for migrations so the agent exercises real database behavior without sharing state between tickets.Live
Daily budget cap + hard pausePer-project daily token spend cap. Hits the threshold → all in-flight jobs pause and you get a Slack/email ping. No surprise bills.Live
Founder Mode escalate globsPer-repo path globs that force human review before merge — auto-merge is disabled on any diff that touches them. Defaults: payments, billing, auth, migrations, .env*.Live
Human override everywherePause a run, reroute a ticket, request changes, or take over the branch. The agent is autonomous only inside the policies you set.Live
Per-comment PR reply trailWhen Gemini / CodeRabbit / a human reviews a PR, each comment gets its own structured fixed / won't-fix reply with a code ref. Auditable.Live
Branch protection respectedThe agent only commits to shipd/ prefixed branches. Default branches stay write-protected for the bot account.Live
SOC 2 Type IIWorking with a Type II auditor. We will not claim compliance until the report lands.In progress
Third-party pen testScoped engagement booked for after public beta. Report will be shared with paying customers under NDA.Planned
Self-hosted runnersRolling out for Enterprise design partners that need runner control inside their own environment.In progress
Data deletion on requestEmail security@specship.dev. Workspace + audit logs + secrets purged within 30 days.Live
Honest disclaimer. Specship is in private beta. We don’t carry a SOC 2 Type II report yet, no signed pen-test letter, and no SLA past best-effort. If those are blockers for your team, email security@specship.dev and we’ll loop you into the compliance roadmap.
Now in private beta

Stop writing tickets nobody picks up.Start shipping.

Join the waitlist — we’re onboarding a few teams a week. Builders only, no procurement decks.

No credit card · We’ll email you when you’re in · Unsubscribe any time