Control Zero error code reference
Every user-visible error from the Control Zero SDK and CLI carries a
stable E#### code. Each code has its own page on this site; click
the code in any error message and you land on the canonical fix.
The codes are organized by area:
| Range | Area |
|---|---|
| E1000-E1099 | Security and secrets management |
| E1100-E1199 | Authentication and enrollment |
| E1200-E1299 | Policy load / validate / bundle |
| E1300-E1399 | Cache and local-disk layout |
| E1400-E1499 | Network and remote backend |
| E1500-E1599 | Hook subprocess and agent integration |
| E1600-E1699 | SDK runtime (guard / audit / close) |
Security (E10xx)
- E1001 -- API key found in agent settings file
- E1002 --
~/.controlzerodirectory is world-readable - E1003 --
config.yamlis world-readable - E1004 -- API key found in shell history
- E1005 -- Cannot read an agent settings file
Reporting a new error you've hit
If controlzero doctor reports a code you can't find a page for,
the page hasn't been published yet. Open an issue at
github.com/controlzero/control_zero/issues
and include the full error message and your controlzero env-dump
output (with --show-secrets left OFF).