Skip to content
Organization & Access

Roles & Permissions

HarborGuard provides six built-in roles with fine-grained permissions across platform domains.

Built-in Roles

  • Owner — Full access, can transfer ownership and delete the organization
  • Admin — Full access except ownership transfer and org deletion
  • Developer — Create and view scans, triage vulnerabilities, manage own API keys
  • Viewer — Read-only access to all dashboards and reports
  • CI/Service Account — API-only access for pipeline integrations
  • Auditor — Read-only access with full audit log visibility

Permission Domains

Permissions are organized by domain: scans, images, vulnerabilities, registries, reports, and settings. Each domain supports view, create, edit, delete, and admin actions.

Previous

Team Management

Next

SSO Configuration

On this page