Self-hostPhase K.5 · planned

Run it in your own cloud.

A Docker Compose bundle of Talos Auditor — workerd + SQLite + local storage, zero outbound requests, your infra. Target Q1 2027. Built for regulated industries, air-gapped networks, and teams that need data-residency guarantees the public cloud can't contractually provide.

Notify me when it ships Current trust page

Who this is for

If any of these sound like you, tell us now — we'll prioritize your constraints in the bundle design.

Regulated industries

Healthcare, finance, defense — where sending metadata off-prem breaks policy. Run Auditor inside your VPC.

Air-gapped networks

Labs and enterprises with no outbound internet. Ships as a Docker Compose bundle with no mandatory cloud callbacks.

Data-residency control

You pick the region. Your infra, your keys, your retention policy, your backup strategy.

Delivery roadmap

Self-host is not a single deliverable — it lands together with SSO and SOC 2 Type II because the buyers who want self-host also want these.

Phase K.5·Target: Q1 2027
Self-host Docker Compose bundle
- Docker Compose with workerd (Cloudflare Workers runtime) for API + consumer
- SQLite in place of D1; local filesystem or MinIO in place of R2
- Postgres option for D1 at scale
- Ollama-only (no cloud Haiku fallback) privacy mode as default
- Clerk-less auth option: built-in OAuth via GitHub + Google + SAML
Phase K.4·Target: Q4 2026
SAML + SCIM SSO (prerequisite for self-host enterprise)
- SAML 2.0 SP-initiated flow
- SCIM 2.0 for user provisioning
- Shipping in Enterprise tier first, then self-host bundle
Phase K.8·Target: Q1 2027
SOC 2 Type II audit + penetration test report
- SOC 2 Type II audit via a named firm (to be announced)
- Third-party penetration test, summary publishable
- These land alongside self-host so regulated buyers can onboard on day one

Honest disclaimers

→Dates are targets, not commitments. Phase K lands after the public GA, which itself targets May/June 2026.
→Self-host will be a paid tier add-on — not free. Expected in the ballpark of 2× cloud Pro per-seat price, final pricing TBD.
→The agent is already Apache-2.0 on npm — @talos-foundrix/auditor-agent. Run it locally and pipe to your own API if you want to build something now. The API + dashboard + consumer are closed-source and stay that way; self-host is the way to get the full stack.
→Our cloud tier will stay the faster-moving one. Self-host releases trail by ~1–2 months so each drop is battle-tested in prod first.