Codefresh emphasizes the importance of code security by ensuring that users' code is not disclosed to third parties and by requesting only the minimal permissions necessary for automating Continuous Integration and Delivery processes. The platform assures users that their code will not be accessed by Codefresh personnel unless explicitly requested in a support scenario. Initially, when users log into Codefresh, minimal permissions are requested, with additional permissions needed only when users choose to add private repositories. Even though read/write permissions are necessary to access and clone private repositories, Codefresh guarantees not to alter any code unless specifically requested by the user. Users have the flexibility to manage access to private repositories through their User Settings, and Codefresh encourages feedback on improving security policies, inviting users to contact them with suggestions.