Back to Legal

Terms of Service

Last updated: February 2025

TL;DR

  • • Use VibeGuard for legitimate security scanning. Don't use it to attack systems you don't own.
  • • Free tier: scan all you want. Pro tier: pay for patch generation and policy bundles.
  • • We provide the tool as-is. You're responsible for reviewing and applying fixes.
  • • Patches are suggestions, not guarantees. Always review before applying.

1. Acceptance of Terms

By using VibeGuard ("the Service"), you agree to these Terms of Service. If you're using VibeGuard on behalf of an organization, you represent that you have authority to bind that organization.

2. Description of Service

VibeGuard is a local-first CLI tool that:

  • Scans code for security issues using multiple open-source scanners
  • Generates reports in JSON, HTML, and SARIF formats
  • Provides patch suggestions using your LLM provider (Pro feature)
  • Integrates with CI/CD pipelines

Scans run locally on your machine. Your code is not uploaded to our servers.

3. Account Registration

Free scanning requires no account. Pro features require an account with valid email and payment information. You're responsible for maintaining the security of your account credentials.

4. Acceptable Use

You agree to:

  • Only scan code you own or have authorization to scan
  • Not use VibeGuard for malicious purposes
  • Not attempt to circumvent licensing restrictions
  • Comply with our Acceptable Use Policy

5. Free and Pro Tiers

Free Tier

Includes scanning, triage, reports, baseline management, and CI outputs. No credit card required.

Pro Tier

Adds patch generation (diff-based fixes), apply safety checks, and policy bundles. Requires subscription and valid payment method.

6. Payment Terms

  • Pro subscriptions are billed monthly or annually
  • Prices are in USD unless otherwise stated
  • You can cancel anytime; access continues until the billing period ends
  • Refunds are handled on a case-by-case basis

7. BYOK (Bring Your Own Key) for Patching

The patch feature uses your LLM provider API key. This means:

  • You pay your LLM provider directly for API usage
  • Code context is sent to your chosen provider, not to VibeGuard
  • You're responsible for compliance with your LLM provider's terms
  • We don't have access to your API keys or the content you send

8. No Warranties

VibeGuard is provided "as is" without warranties of any kind. We don't guarantee:

  • That all vulnerabilities will be detected
  • That generated patches will be correct or complete
  • That the service will be uninterrupted or error-free

Always review patches before applying them. You are responsible for testing and validating any changes to your codebase.

9. Limitation of Liability

To the maximum extent permitted by law, VibeGuard and its creators shall not be liable for:

  • Security incidents resulting from undetected vulnerabilities
  • Damages from applying generated patches
  • Any indirect, incidental, or consequential damages

Our total liability is limited to the amount you paid for the service in the 12 months preceding the claim.

10. Intellectual Property

VibeGuard's software, branding, and documentation are our intellectual property. Your code remains yours - we claim no rights to it.

11. Termination

You can stop using VibeGuard at any time. We may terminate accounts that violate these terms or our Acceptable Use Policy.

12. Changes to Terms

We may update these terms. Continued use after changes constitutes acceptance. Material changes will be communicated via email or in-product notification.

13. Governing Law

These terms are governed by the laws of the State of Delaware, USA, without regard to conflict of law principles.

14. Contact

Questions about these terms? Email legal@vibeguard.co