1. No unlawful or harmful activity
You must not use sapctl to violate any law, infringe intellectual-property rights, defame, harass, or distribute malicious code. You must not use sapctl in connection with sanctioned parties or restricted destinations under EU, UK, or US export-control regimes.
2. No interference with SAP systems
You must not configure sapctl to circumvent SAP licence metering, defeat SAP Note compliance, or violate the SAP API Policy applicable to your tenant. Use of sapctl against systems you do not own or have written authorisation to test is prohibited.
3. No abuse of the service
You must not (a) reverse-engineer or attempt to derive source code of the cloud services beyond what is permitted by law; (b) probe for vulnerabilities except under our CVD policy; (c) exceed rate limits; or (d) impersonate another user.
4. AI agent use
You are responsible for the agents you configure to call sapctl. You must not use sapctl to operate agents that violate the SAP API Policy v4/2026, the EU AI Act, or the applicable obligations on Annex III high-risk systems.
5. Content restrictions
You must not upload, mirror, or distribute content that is unlawful, deceptive, infringes a third-party right, or contains malware. Audit logs and SBOMs uploaded to the Trust Portal are subject to the same restrictions.
6. Reporting
If you believe another user is violating this policy, email abuse@sapctl.dev. We investigate every report and will respond within 5 business days.
7. Enforcement
Violations may result in throttling, suspension, or termination as set out in the Terms of Service.