Trust Score
Trust Score is a single number between 0 and 100 summarising the operational trustworthiness of your entire tenant. Board-meeting-ready; derived evidence for your auditor.
Formula (v1.2)
| Component | Weight | Source |
|---|---|---|
| Patch hygiene | 30% | inventory_dependency_cves + KEV/EPSS-weighted |
| Agent health | 20% | agents.last_seen_at + version-currency, maintenance-aware |
| Secrets exposure | 15% | inventory_security_findings |
| Configuration drift | 15% | process_dna + config_file_baselines |
| EAT resolution discipline | 10% | emergency_tokens success vs failed |
| Evidence continuity | 10% (0% for tenants < 90d) | monthly audit-pack coverage |
Bootstrap mode
New tenants have zero evidence-continuity by definition. Redistribution:
- < 30 days: evidence-continuity = 0%, redistributed to patch +5, agent +5
- 30-90 days: evidence-continuity = 5%, redistributed proportionally
- ≥ 90 days: full weight
API
GET /api/v1/trust-score/v12/tenant?range=30d|90d|365dGET /api/v1/trust-score/v12/agents/:id?range=30d|90d|365dRequires viewer role.