Adensabais applies supply-chain verification, runtime isolation, and tamper-evident logs to every node-js workload that runs on the platform.
Every npm dependency is verified against a Sigstore attestation before it touches a node js worker.
Workers run in V8 isolates with capability-scoped FS and network policies.
Short-lived SPIFFE identities — no static credentials inside the runtime.
Append-only Merkle log of every control-plane event, exportable on demand.
mTLS between all nodejs services with rotating workload certificates.
One click exports SOC2 evidence packages scoped to a date range.