VibeShield

Terms of Service

Last updated: May 10, 2026

1. Acceptance of Terms

By accessing or using VibeShield ("the Service"), you agree to be bound by these Terms of Service. If you do not agree, you may not use the Service. These terms apply to all users, including free-tier users and paid customers.

2. The Service

VibeShield is an automated security scanner for AI-generated web applications. The Service detects common vulnerability patterns in publicly accessible JavaScript bundles and probes for misconfigured Supabase Row Level Security policies. For each finding, VibeShield generates suggested fix prompts formatted for AI coding tools (Lovable, Bolt, Cursor, v0, Replit, Claude Code, and others).

Important: VibeShield is a scanner, not a security audit or penetration test. Scan results are best-effort findings based on publicly observable signals and do not guarantee the discovery of all vulnerabilities in your application. The AI-generated fix prompts are draft suggestions. You are solely responsible for reviewing them before pasting into your AI coding tool, and for verifying that any resulting code change actually resolves the underlying issue.

3. Limitation of Liability

VibeShield is an automated security scanning service. We do not provide penetration testing, manual security audits, or legal, compliance, or regulatory certification. The Service does not guarantee that your application is free of vulnerabilities, and does not guarantee that fix prompts will resolve every issue.

You are solely responsible for the security of your application. The Service is provided "as is" without warranties of any kind, express or implied.

To the maximum extent permitted by law, VibeShield shall not be liable for any indirect, incidental, special, consequential, or punitive damages, or any loss of profits, revenue, data, or business opportunities arising from your use of the Service, including vulnerabilities present in your application that VibeShield did not detect, code changes made based on VibeShield's fix prompts, or any security incident affecting your application or its users.

4. Pricing & Billing

Payments are processed by Paddle, our authorized Merchant of Record. Paddle handles all payment processing, invoicing, sales tax, and VAT on our behalf. Your card statement will show a charge from Paddle.net.

Deep Scan — $9 (one-time):

  • A single deep scan with a PDF report delivered within 24 hours.
  • One-time charge. No recurring billing.

Continuous monitoring — $29/month:

  • Auto re-scan on every push to your connected Git repository plus daily URL re-prober.
  • Subscriptions renew automatically each month unless cancelled.
  • You may cancel at any time from Paddle's customer portal. Cancellation takes effect at the end of your current billing period.
  • Price changes will be communicated at least 30 days in advance.

5. Refunds

Deep Scan ($9 one-time): Refunds are honored within 14 days of purchase if the scan failed to complete, if the report was never delivered, or for EU customers exercising their statutory right of withdrawal under EU Directive 2011/83/EU.

Continuous subscription ($29/month): You may cancel at any time. Refunds for the most recent billing cycle are considered at our discretion within 14 days if no scans have been triggered in that cycle.

To request a refund, email founder@vibe-shield.com or contact Paddle directly at paddle.net/support.

6. Acceptable Use

You agree to:

  • Only scan applications that you own, operate, or have explicit written authorization to scan.
  • Not use the Service to discover vulnerabilities in third-party applications without authorization — this may constitute unauthorized access under applicable law.
  • Not resell, redistribute, or commercially exploit VibeShield reports as your own work product.
  • Not reverse-engineer, scrape, or attempt to extract the underlying detection rules from the Service.
  • Not use automated tools, scripts, or bots to abuse the free-tier scanner.
  • Not share account credentials or allow unauthorized access to your account.

Violation of these terms may result in immediate termination of access and, where applicable, legal action.

7. Termination

We reserve the right to suspend or terminate your access if you violate these Terms. You may cancel your subscription at any time from Paddle's customer portal or by emailing founder@vibe-shield.com. Upon termination, any data we hold about you (email address, scan timestamps) will be deleted within 30 days unless retention is required by law.

8. Governing Law

These Terms shall be governed by and construed in accordance with the laws of the Republic of Serbia, without regard to conflict-of-law principles. Any disputes arising from these Terms shall be subject to the exclusive jurisdiction of the courts of Belgrade, Serbia.

9. Contact

Questions about these Terms? Contact us at founder@vibe-shield.com.

10. Merchant of Record

Our order process is conducted by our online reseller Paddle.com. Paddle.com is the Merchant of Record for all our orders. Paddle provides all customer service inquiries and handles returns.