Average data breach cost: $4.88M (IBM 2024)
$99/mo flat for up to 20 devs. AI auto-fix included.
Snyk 20 devs = $6,000/yr → Patchguard 20 devs = $948/yr. 6.3× cheaper. No per-scan credits. No surprise bills. 30-day full refund on your first subscription.
Severity-based Tier routing · transparent AI allocation
Forensic Tier for what matters. Auto tier-down otherwise.
critical / high
Forensic Tier
deepest analysis · chain replay
medium
Analyst Tier
medium depth · fast iteration
low / info
Scout Tier
lightweight · high-throughput
Critical / High always runs on Forensic Tier. Medium and below auto-routes to Analyst / Scout to save quota. The actual Tier is stamped on every PR via an `Analyzed by Patchguard {Tier}` badge.
Personal
1 seat — for solo devs & indie hackers
$15/mo
5 repos
10 AI repairs/month
1 seats
Most popular
Team
Up to 20 devs · AI fix 500/mo · Audit log
$99/mo
Unlimited repos
500 AI repairs/month
20 seats
Enterprise
SSO/SAML · SCIM · 99.5% SLA · On-prem
Contact sales
Unlimited repos
Unlimited AI repairs/month
Unlimited seats
Compare plans in detail
| Feature | Free | Personal | Team | Enterprise |
|---|---|---|---|---|
| Scanning & Repair | ||||
| Seat cap | 1 | 1 | Up to 20 | Unlimited |
| Repositories | 1 (public) | 5 | Unlimited | Unlimited |
| Repo scans / month | 3 | Unlimited | Unlimited | Unlimited |
| AI Repairs / month | 1 coupon | 10 | 500 | Unlimited |
| URL Scans / month | — | 1 | 3 | Unlimited |
| Severity-based Tier routing | — | ✓ | ✓ | ✓ |
| 5-stage AI repair pipeline | 1 coupon | ✓ | ✓ | ✓ |
| Sandbox verification (Docker) | ✓ | ✓ | ✓ | ✓ |
| Security re-scan (Semgrep + AI) | ✓ | ✓ | ✓ | ✓ |
| Auto-patching at scale | — | — | ✓ | ✓ |
| Languages & Lanes | ||||
| 25-language reachability | ✓ | ✓ | ✓ | ✓ |
| CVE & Dependencies | ✓ | ✓ | ✓ | ✓ |
| Container scanning | ✓ | ✓ | ✓ | ✓ |
| IaC scanning | ✓ | ✓ | ✓ | ✓ |
| Secrets detection | ✓ | ✓ | ✓ | ✓ |
| SAST (3,200+ rules) | ✓ | ✓ | ✓ | ✓ |
| Malicious package detection | ✓ | ✓ | ✓ | ✓ |
| LLM Guard (OWASP LLM Top 10) | ✓ | ✓ | ✓ | ✓ |
| ML-BOM (CycloneDX 1.6) | ✓ | ✓ | ✓ | ✓ |
| MCP Audit | ✓ | ✓ | ✓ | ✓ |
| Agent Supply Chain | ✓ | ✓ | ✓ | ✓ |
| Integrations | ||||
| GitHub | ✓ | ✓ | ✓ | ✓ |
| GitLab | ✓ | ✓ | ✓ | ✓ |
| Bitbucket | ✓ | ✓ | ✓ | ✓ |
| Slack notifications | ✓ | ✓ | ✓ | ✓ |
| SAML SSO | — | — | ✓ | ✓ |
| SCIM 2.0 provisioning | — | — | ✓ | ✓ |
| Compliance & Audit | ||||
| SBOM (CycloneDX + SPDX + VEX) | ✓ | ✓ | ✓ | ✓ |
| EU CRA Article 14 export | — | — | ✓ | ✓ |
| Hash-chained tamper-evident audit log | — | — | ✓ | ✓ |
| OpenTelemetry export | — | — | ✓ | ✓ |
| Audit log retention | — | 30 days | 1 year | Custom |
| SOC2 Type 1 | — | — | — | in progress |
| Support & SLA | ||||
| Email support | ✓ | ✓ | ✓ | ✓ |
| Priority support (24h response) | — | — | ✓ | ✓ |
| Dedicated CSM | — | — | — | ✓ |
| On-prem deployment (Helm) | — | — | — | Contact sales |
| Uptime SLA | — | — | — | 99.5% |
⚙What's an AI repair?
AI analyzes your code → generates a fix → runs tests in sandbox → re-scans for new issues → creates a PR. Average time: ~3 minutes. Average confidence: 85/100.
1Analyze
2Generate Fix
3Sandbox Test
4Re-scan
5Create PR
Frequently asked questions
What is your refund policy?
We offer a 30-day full refund on your first subscription — no questions asked. After the first 30 days, you can cancel anytime and your plan remains active until the end of the billing period. Refunds are processed by Paddle, our Merchant of Record.
Can I upgrade or downgrade at any time?
Yes. Upgrades take effect immediately with a prorated charge for the remainder of the billing period. Downgrades take effect at the start of your next billing cycle. After a downgrade, existing resources beyond the new plan's limits (repositories, team members) are preserved — only new additions are blocked. To stay within your new limits, archive any extra repositories or remove unused members before the downgrade takes effect. Your data and settings are preserved during plan changes.
Do you offer annual discounts?
Yes — annual billing saves 20% compared to monthly. Annual plans are billed upfront for the full year. Contact sales@bitmax.im for Enterprise annual pricing.
What payment methods do you accept?
We accept all major credit cards (Visa, Mastercard, American Express), PayPal, and wire transfer (Enterprise only). All payments are processed securely by Paddle. For invoiced billing (NET-30), contact our sales team.
How is sales tax / VAT handled?
Paddle automatically calculates and collects applicable sales tax, VAT, and GST based on your billing address. Paddle is the Merchant of Record, so you receive a tax-compliant invoice directly from Paddle.
How do I cancel my subscription?
You can cancel anytime from Settings → Billing in your dashboard. Your plan remains active until the end of the current billing period. No cancellation fees. All your data (SBOMs, audit logs, findings) remains accessible for 30 days after cancellation.
How is this different from Snyk?
Snyk alerts you about vulnerabilities. Patchguard fixes the code — tested, verified, and ready to merge.
What if my team has more than 20 developers?
Team plan is a flat $99/mo for up to 20 seats — no per-seat math. Once you hit the 20-seat cap, the next member invitation is blocked with an upgrade prompt to Enterprise (unlimited seats + SSO/SAML + SCIM + 99.5% SLA + dedicated support).
What happens when I run out of AI fixes?
Hard cap — no surprise overage charges. You get a personalized in-app prompt (Free: upgrade to Personal · Personal: upgrade to Team · Team: contact Enterprise). Counter resets on the 1st of each month.
Our order process is conducted by our online reseller Paddle.com. Paddle.com is the Merchant of Record for all our orders. Paddle provides all customer service inquiries and handles returns.
Still comparing? Book a 20-minute demo.
Book a 20-minute demo →