Terms of Service

Effective Date: March 23, 2026

1. Introduction

Cipherline LLC (“Company”, “we”, “us”, “our”) operates the XploitScan security scanning platform available at xploitscan.com and through our CLI tool (collectively, the “Service”). These Terms of Service (“Terms”) govern your use of the Service. By accessing or using the Service, you agree to be bound by these Terms. If you do not agree to these Terms, please do not use the Service.

2. Service Description

XploitScan is a security scanning tool designed to identify vulnerabilities in AI-generated and human-written code. The Service analyzes your code for common security issues, provides plain-English explanations of findings, and offers fix suggestions. XploitScan can be used via our web interface or our CLI tool (npx xploitscan scan .).

3. Accounts and Authentication

To use certain features of the Service, you must create an account. We use Clerk as our authentication provider. When you create an account, you agree to:

  • Provide accurate and complete information
  • Keep your login credentials secure
  • Notify us immediately of any unauthorized access to your account
  • Accept responsibility for all activity that occurs under your account

You may authenticate using email, social logins, or other methods supported by Clerk. We are not responsible for Clerk’s availability or security practices, though we have selected them as a trusted provider.

4. Plans and Pricing

XploitScan offers the following plans:

  • Free Plan: Includes a limited number of scans per month, suitable for individual developers and small projects.
  • Pro Plan ($29/month): Includes unlimited scans, priority processing, advanced analysis features, and team collaboration tools.

Paid subscriptions are processed through Stripe. By subscribing to a paid plan, you authorize us to charge your payment method on a recurring monthly basis. You may cancel your subscription at any time, and you will retain access to Pro features until the end of your current billing period. Refunds are not provided for partial billing periods.

5. Acceptable Use

You agree not to use the Service to:

  • Violate any applicable law or regulation
  • Scan code that you do not have the legal right to analyze
  • Attempt to reverse-engineer, decompile, or disassemble the Service
  • Interfere with or disrupt the Service or its infrastructure
  • Use the Service to develop competing products
  • Automate access to the Service beyond what our API and CLI tool permit
  • Use scan results to exploit vulnerabilities in systems you do not own or have authorization to test

6. Intellectual Property

Your Code: You retain full ownership of any code you submit for scanning. XploitScan does not claim any ownership rights over your source code, repositories, or intellectual property. We do not use your code to train models or for any purpose beyond providing the scan results you requested.

Our Service: The XploitScan platform, including its software, design, branding, documentation, and scan analysis algorithms, is owned by Cipherline LLC and protected by intellectual property laws. These Terms do not grant you any rights to our trademarks, logos, or brand assets.

7. Code Handling and Data Practices

We take the security of your code seriously. When you submit code for scanning, it is processed in memory, analyzed for vulnerabilities, and then immediately deleted. We do not store your source code on our servers, in our database, or in any persistent storage. The only data we retain from a scan is the metadata (such as scan date, number of findings, and severity levels) and the results themselves. Your actual source code is never stored.

8. Limitation of Liability

XploitScan is a tool that provides security suggestions and recommendations. It is important to understand that:

  • Scan results are suggestions, not guarantees. We do not guarantee that our scans will identify every vulnerability in your code.
  • XploitScan is not a substitute for professional security audits, penetration testing, or code review by qualified security engineers.
  • We are not liable for any damages, losses, or security incidents that arise from relying on XploitScan scan results.
  • The Service is provided “as is” and “as available” without warranties of any kind, whether express or implied.

To the maximum extent permitted by law, XploitScan’s total liability for any claims arising from your use of the Service is limited to the amount you paid us in the 12 months preceding the claim.

9. Termination

You may stop using the Service and close your account at any time. We may suspend or terminate your access to the Service if:

  • You violate these Terms
  • You engage in activity that could harm the Service or other users
  • We are required to do so by law
  • We decide to discontinue the Service (with reasonable notice)

Upon termination, your right to use the Service ends immediately. Any provisions of these Terms that should reasonably survive termination (such as limitation of liability and intellectual property) will continue to apply.

10. Changes to These Terms

We may update these Terms from time to time. When we make significant changes, we will notify you by email or through the Service. Your continued use of the Service after changes take effect constitutes acceptance of the updated Terms. We encourage you to review these Terms periodically.

11. Contact

If you have questions about these Terms, please reach out to Cipherline LLC at hello@xploitscan.com.