Terms of Service
1. Service description
VibeScan provides automated security scanning for source code submitted via API, Claude MCP, or ChatGPT GPT. Findings are advisory and informational. VibeScan does not guarantee detection of all vulnerabilities and is not a substitute for professional security review.
2. Acceptable use
You may only submit code you own or have the legal right to scan. You may not attempt to abuse the service, bypass rate limits, reverse-engineer the scanning engine, or use VibeScan to scan code for the purpose of exploiting vulnerabilities in systems you do not own.
3. Accounts and API keys
Your API key is your credential. Do not share it publicly or embed it in client-side code. We may revoke keys that appear compromised or are being abused. Lost keys cannot be recovered — create a new one via /app/keys.
4. Code handling
Code submitted for scanning is processed in ephemeral containers and deleted immediately after. We do not retain, log, or train on your code. See our Security & Privacy Policy for details.
5. Plans, billing, and cancellation
Paid plans are billed monthly via Stripe. You may cancel anytime — cancellation takes effect at the end of the current billing period. No refunds for partial months. Downgrade to Free on cancellation. Upgrade takes effect immediately.
6. Liability
VibeScan is provided "as is." We are not liable for security incidents arising from undetected vulnerabilities, service downtime, or third-party scanner behavior. Maximum liability is limited to fees paid in the 12 months preceding a claim.
7. Changes
We may update these terms with 30 days' notice via email to account holders. Continued use after changes constitutes acceptance.