Find the insights and best practices about our product.
Frequently Asked Questions
Are there role-based access controls available in Cranium?
Does Cranium prevent users from accessing and/or sending sensitive data to ChatGPT or other public services?
How can Cranium help mitigate risks associated with tools like Copilot?
How can Cranium support TPRM (third-party risk management) for AI systems?
How is Cranium different from existing SAST or DAST tools?
How is Cranium different from my existing SBOM tool?
Can Detect AI scans show if a repository has been recently updated?
Can I assign ownership of AI System artifacts to specific users?
Does Cranium support SSO (single sign-on)?
How long does the Cranium CodeSensor take to generate a Bill of Materials?
Is there a risk-rating system for model vulnerabilities?
What programming languages can CodeSensor scan?
What types of security testing does Cranium run?
Why doesn't my Bill of Materials contain any Infrastructure components?
How much does Cranium cost as a third-party vendor?
What is the Cranium platform licensing structure?
Where in the AI pipeline can AI-specific vulnerabilities be discovered?
Does Cranium integrate with workflow, ticket, or vulnerability management tools (e.g., ServiceNow, Jira)?
What option does an organization have if their VCS is not supported by Cranium?
What VCS (version control system) does Cranium support?
Does any source code leave my organization's secure network?
Does Cranium fulfill requests for security review?
Is Cranium FedRAMP authorized?
What level of network access is required for Cranium's CodeSensor?
What's the difference between DetectAI and CodeSensor?
How does the Proof of Value (POV) process work?
How do you handle third-party AI vendors?
What does Production EU Region Support mean for my organization?