Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.neuro-tech.io/llms.txt

Use this file to discover all available pages before exploring further.

Security and transport

TLS / HTTPS

All Neuron API traffic is encrypted in transit using TLS 1.2 or higher. Plain HTTP requests are not accepted and will be rejected. Always use https://api.neuro-tech.io as the base URL.

API key management

  • Store keys in environment variables or a secrets manager — never hardcode them.
  • Rotate keys regularly (recommended: every 90 days).
  • Immediately revoke any key that may have been compromised.
  • Use scoped keys with the minimum required permissions.

IP allowlisting

You can restrict API key usage to specific IP addresses or CIDR ranges from the Neuro dashboard under Settings → API Keys → Restrictions.

Webhook security

All outbound webhooks from Neuro include an X-Neuro-Signature header. Verify this signature on your server before processing any webhook payload.

Data handling

  • All data is encrypted at rest using AES-256.
  • Sensitive fields (e.g., account numbers) are masked in logs and responses where applicable.
Never log full API keys or authorization headers in your application logs.