Pricing

Simple, transparent pricing

From free scans to full agency security. No hidden fees.

Free
Quick Scan
Free
forever

Are you leaking secrets? Paste your URL and find out in 60 seconds. No signup needed.

  • Exposed API keys & secrets
  • Basic website security headers
  • Database exposure check
  • All issues shown (fixes locked)
  • ~32 checks run
  • No signup required
Scan Now
Paid
Launch Checklist
$29
one-time

Are you ready to launch? Full security audit of everything visible from the outside. PDF certificate included.

  • Everything in Free, plus:
  • Full SSL/TLS & DNS analysis
  • Open port & network scanning
  • Active vulnerability testing
  • All ~110 findings shown
  • PDF certificate & trust badge
  • OWASP category mapping
  • 1 domain, unlimited re-scans
Coming Soon
Security Co-pilot
$49
per month

Stay secure as you grow. Deep code analysis, AI safety checks, and continuous monitoring.

  • Everything in Launch Checklist, plus:
  • Source code vulnerability scanning
  • Dependency & supply chain analysis
  • AI/LLM injection protection checks
  • Auth & session security audit
  • CI/CD pipeline security
  • Supabase/Firebase/Vercel config audit
  • Weekly automated re-scans
  • All 364 checks & trend tracking
  • Up to 3 domains

Feature Comparison

Choose the plan that fits your security needs.

Category Quick Scan (Free) Launch Checklist ($29) Security Co-pilot ($49/mo) — coming soon
What we scan
Exposed secrets & API keys JS bundle JS bundle Full codebase + git history
Website security (headers, SSL) basics full SSL/TLS + DNS full
Database exposure Supabase RLS deep platform audit
Code vulnerabilities (SAST) SQL injection, XSS, auth
Dependencies & supply chain CVEs, hallucinated packages
Network & infrastructure ports + exposed files + CI/CD + containers
AI/LLM safety prompt injection, output safety
Auth & session security OAuth, passwords, sessions
Compliance readiness SOC 2, GDPR, PCI
What you get
Total checks ~32 ~110 364
Results shown All findings All findings All findings + trends
Fix guides 🔒 locked all AI-powered, stack-specific
PDF certificate & badge
Weekly automated re-scans
Max grade achievable B+ B+ A
Domains Unlimited (free tier) 1 domain Up to 3 domains
Re-scans 3 per day Unlimited Unlimited + weekly auto
Signup required No Email only GitHub OAuth

Run an agency? Need white-label?

We're building an Agency tier for teams managing multiple client apps. Get on the list and we'll reach out when it's ready.

Frequently Asked Questions

Have questions about our pricing? We have answers.

What's the difference between the three tiers?
Quick Scan (free) checks if you're leaking secrets and have basic security headers — ~32 checks, top 3 issues shown. Launch Checklist ($29) goes deeper with full SSL/TLS analysis, DNS security, open ports, and active vulnerability testing — ~110 checks, all shown with a PDF certificate. Security Co-pilot ($49/mo) connects to your GitHub and platform configs to scan your actual source code, dependencies, auth logic, AI safety, and CI/CD pipelines — all 364 checks with weekly re-scans.
Why does Security Co-pilot find so much more?
Free and Launch Checklist only check what's visible from the outside — your JavaScript files, server settings, and network. Security Co-pilot (coming soon) will connect to your GitHub repo and backend config (Supabase, Firebase, Vercel), so we can read your actual source code and check 364 patterns including SQL injection, broken auth, hallucinated packages, AI prompt injection, and more.
What happens after my 90-day certificate expires?
Your Launch Checklist is valid for 90 days from the scan date. Before it expires, you can purchase another scan and get a fresh certificate. No action is required — you can let it expire and renew when you're ready.
When will Security Co-pilot launch?
We're actively building it. Join the waitlist and we'll notify you when it's ready. When it launches, you'll be able to cancel anytime with no lock-in or termination fee. Your first scan runs immediately when you sign up — think of it as a one-time deep scan with optional ongoing monitoring.
Is there a money-back guarantee?
Yes. The Launch Checklist has a 30-day money-back guarantee. No questions asked. Security Co-pilot will also have a 30-day guarantee when it launches.
What about an Agency plan?
We're building an Agency tier for teams managing multiple client apps, with white-label reports and bulk dashboards. Email [email protected] to get on the waitlist — we'll reach out when it's ready.

Start securing your AI app today

Free scan takes 60 seconds. No signup. No credit card. Just paste your URL.

Your code is processed in memory and never stored.