Public Data Rules
The public dashboard, event summaries, reports, and unauthenticated APIs show sanitized aggregate data only.
| Shown publicly | Counts, trends, severity, category, coarse country/network context, and normalized client type. |
| Kept private | Raw IP hashes, request headers, payloads, canary tokens, session IDs, full user agents, customer details, and API keys. |
| Map data | Attack-map locations are approximate and may use country-level or trusted edge-header attribution. |