Skip to content

Pricing for pre-ship security scans

Pay for focused scans of AI-built apps and agent runtimes before launch. Quick stays public-surface; Deep adds Premium active checks, OpenClaw/Hermes/Clawdbot/MCP agent posture, SOC 2 readiness, WCAG 2.2, and context-required coverage.

Free

Try a quick public-surface check

$0

1 quick scan credit for new accounts

  • Security headers audit
  • Exposed file checks
  • Passive route and metadata mapping
  • Browser, cookie, CORS, and platform exposure checks
  • VibeCoding pattern detection
  • Public AI-agent config signals
  • Premium checks excluded
Start Free Scan

Quick Scan

Essential launch checks

$5per scan
  • Security headers audit
  • Exposed file checks
  • Passive route and metadata mapping
  • Browser, cookie, CORS, and platform exposure checks
  • VibeCoding pattern detection
  • Public AI-agent config signals
  • Report with severity and fixes
Buy Quick Scan

Deep Scan

Active, API, and owner-context launch check

PREMIUM
$25per scan
  • Everything in Quick Scan
  • Safe active injection, redirect, and rate-limit probes
  • API, GraphQL, webhook, and request-handling checks
  • OpenClaw, Hermes, Clawdbot, and MCP agent runtime posture
  • SOC 2 readiness signals and owner-evidence checklist
  • WCAG 2.2 A/AA automated signals plus manual-review checklist
  • Premium context-required auth, tenant, upload, and workflow checklist
  • Repo, CI/CD, container, cloud, and AI-agent owner-context audit
  • PDF report export
Buy Deep Scan

Save with bundles

Buy Quick Scan credits through Stripe, or start a Deep Scan and pay per target.

Save 20%

Quick Bundle (5)

5 quick scan credits

$20$25

$4 per scan

Per target

Deep Scan

Adds active probes, OpenClaw/Hermes/MCP agent coverage, SOC 2 readiness, WCAG 2.2, and Premium context coverage

$25/scan

Card checkout after target confirmation

Start Deep Scan
Coming soon

Pro Monthly

Planned recurring scans and team workflow

$49/month

Not available for purchase yet

Join Pro waitlist

Feature comparison

Current scanner coverage by scan type.

Feature Free Quick Deep Pro
Security headers auditPlanned
Exposed file checksPlanned
Passive route and metadata mappingPlanned
Browser, cookie, CORS, and platform exposure checksPlanned
VibeCoding pattern detectionPlanned
Public AI-agent config signalsPlanned
Safe active injection, redirect, and rate-limit probesPlanned
API, GraphQL, webhook, and request-handling checksPlanned
OpenClaw, Hermes, Clawdbot, and MCP agent runtime posturePlanned
SOC 2 readiness signals and evidence checklistPlanned
WCAG 2.2 accessibility signals and review checklistPlanned
Premium context-required auth and tenant checksPlanned
Premium repo, CI/CD, container, cloud, and AI-agent context auditPlanned
PDF report exportPlanned
Scans included1 quick1 per purchase1 per purchaseComing soon

Current scope

SOC 2 readiness, WCAG 2.2, and AI-agent/MCP gateway coverage are Premium Deep Scan coverage. Automated findings are reported as signals; owner evidence, tool policies, and manual accessibility review remain context-required unless you provide staging accounts, repo access, platform configuration, and test workflows.

Frequently asked questions

What you get when you buy a scan today.

A Quick Scan covers passive public-surface checks: headers, exposed files, metadata, browser posture, CORS, cookies, and platform exposure. A Deep Scan is the Premium tier: it adds safe active probes, API checks, OpenClaw/Hermes/MCP agent runtime posture, SOC 2 readiness signals, WCAG 2.2 accessibility checks, repo/cloud/AI owner-context coverage, and the context-required pentest checklist.

No. VibeCodeGuard reports SOC 2 readiness and WCAG 2.2 accessibility signals. SOC 2 attestation requires an independent auditor, and WCAG conformance requires manual accessibility validation across real user workflows.

No. VibeCodeGuard is an automated public-surface scanner for pre-ship checks. It can catch common launch issues quickly, but it does not replace a manual security review for high-risk systems.

Credits are prepaid Quick Scan tokens. New accounts include one Quick Scan credit, but using that included credit requires a no-charge Stripe registration so the free scan stays limited to one account. After paid Stripe checkout succeeds, purchased Quick Scan credits are added to your account. Deep Scans are paid per target so the price always matches the selected scan depth.

If something goes wrong with checkout or scan processing, contact support with the scan or purchase id. Refunds are reviewed case by case and are processed through Stripe when approved.

VibeCodeGuard scans only publicly reachable URLs you submit. We store account email, scan target URL, scan status, findings, reports, Stripe customer/payment/setup identifiers, and a hashed Stripe card fingerprint for free-scan abuse prevention. Stripe handles card details.

Pro Monthly is not available for purchase yet. The waitlist is for teams that want recurring scans, priority workflow, and collaboration features when those are ready.

Focused scope

Public URL scans

Stripe checkout

Card data handled by Stripe

PDF reports

Export completed scans

Email support

hello@vibecodeguard.com

Run the check before launch

Start with a $5 Quick Scan or run a $25 Deep Scan when your AI-built app is close to production.

Start $5 Scan Start Deep Scan