Manual approval only
Pricing
Request review first. Payment and repository access happen only after manual scope approval.
Do not paste credentials.
Private repositories require manual approval. Do not submit tokens, passwords, PATs, SSH private keys, secrets, logs, database dumps, production data, or PHI.
Snapshot
$500
Founder-reviewed quick diagnostic for scoped repositories after manual approval.
- Founder-led manual review
- Scoped static review only
- No dependency install or code execution
- 1-2 page risk summary
- Target: 1-2 business days after access approval
Opens the attestation-gated request form. No payment is collected here.
Standard
$750
Deeper red-flag report with commit-pinned evidence and separately labeled AI-assisted notes.
- Everything in Snapshot
- Founder-reviewed report
- Commit-pinned deterministic evidence
- AI-assisted notes labeled separately
- 30-minute debrief call
Opens the attestation-gated request form. No payment is collected here.
Rush
Contact
Expedited manual review for active diligence deadlines. Scope and timing are confirmed before payment.
- Manual scope confirmation required
- Founder-reviewed report
- No automated private-repo scanning
- No PHI, secrets, logs, dumps, or production data
- Timing confirmed after approval
Opens the attestation-gated request form. No payment is collected here.
Frequently Asked Questions
Can I submit a private repository from this page?
No. Repository intake goes through /private-repository-access so authority, no-PHI, no-secret, no-execution, and manual-approval attestations are captured first.
When does payment happen?
Payment happens only after manual scope approval. Pricing cards do not create checkout sessions, clone repositories, or start scans.
How is private access handled?
After approval, access uses a dedicated read-only auditor account or a per-audit read-only deploy key. Do not paste credentials into forms.