Only meta-data, no saving source code
Our analytics uses meta-data generated via read-only API calls to the SCM providers. For instances where API calls aren't available, we perform Git analysis on that particular commit using ephemeral instances, generate the analytics and delete the clone. We are never looking into your code at any time, nor saving the same. It's equally safe for your code, less risky for us.