Legal
Clear boundaries for trust, use, and disclosure.
These pages define how ota.run handles site data, how the hosted surface differs from the open CLI, and how to report issues responsibly.
Legal surfaces
Use the page that matches the actual boundary you are evaluating.
Keep the distinction clear: browser storage and site operations belong inPrivacy, use and licensing boundaries belong inTerms, and vulnerability handling belongs inSecurity.
01
Data handling
Privacy
What the site stores, what the CLI may request over the network, and where hosted and local boundaries differ.
Open privacy →02Use and licensing
Terms
What governs use of the site and docs, how open-core licensing differs from hosted surfaces, and where brand rights stop.
Open terms →03Disclosure
Security
How to report vulnerabilities, what to include, which boundaries matter, and how private disclosure should work.
Open security →Jump directly