Terms of Service

Last updated: March 18, 2026

1. Acceptance of Terms

By accessing or using Unpatched.ai ("the Service"), you agree to be bound by these Terms of Service ("Terms"). If you do not agree, do not use the Service. The Service is only available in certain supported regions. These Terms incorporate our Privacy Policy, Credit Terms, and Vulnerability Discovery and Disclosure Policy by reference.

2. Description of Service

Unpatched.ai provides automated security analysis of GitHub repositories. The Service clones repositories into ephemeral, sandboxed environments, performs AI-assisted vulnerability analysis, and generates structured findings reports. Sandboxed environments are destroyed after each assessment, and your source code is not retained after the assessment completes.

3. Eligibility and Account Registration

You must be at least 18 years old and located in a supported region to use the Service. We may require identity verification at any time as a condition of continued access to the Service. When you create an account, you must provide accurate information and keep it up to date. You are responsible for maintaining the security of your account and for all activity that occurs under it. We reserve the right to approve, deny, or revoke access to the Service at our sole discretion, for any reason or no reason, regardless of whether you meet the eligibility criteria.

4. User Responsibilities

You agree that you will:

  • Only submit repositories that you own or have explicit authorization to assess
  • Handle all vulnerability findings responsibly, in accordance with our Vulnerability Discovery and Disclosure Policy
  • Use the Service only for legitimate security assessment of software you own or are explicitly authorized to assess, not to probe, test, or find vulnerabilities in Unpatched.ai itself or its infrastructure
  • Not use the Service for any unlawful purpose or in violation of any applicable laws or regulations
  • Not attempt to interfere with, compromise, or disrupt the Service or its infrastructure
  • Not reverse-engineer, decompile, or attempt to extract the source code of the Service
  • Not resell, sublicense, or redistribute the Service or its outputs without our written consent

5. GitHub Integration

The Service integrates with GitHub via a GitHub App. By connecting your GitHub account, you grant us read-only access to the repositories you select. We use short-lived installation tokens to clone repositories on your behalf and do not access repositories outside of assessments you initiate. You may revoke access at any time by uninstalling the GitHub App.

6. AI Processing

The Service may use third-party AI models to analyze your code. During an assessment, your source code may be sent to the AI provider for analysis. The AI providers we use are contractually prohibited from using inputs for model training. Assessment results are generated by automated analysis and should be reviewed by a qualified person before being acted upon.

7. Intellectual Property

You retain all ownership rights to your source code and repositories. We do not claim any ownership over code you submit for assessment. The Service itself, including its design, software, branding, and documentation, is owned by Unpatched.ai and protected by applicable intellectual property laws. Assessment findings generated by the Service are provided to you for your use, but the underlying methodology, prompts, and analysis techniques remain our intellectual property.

8. Billing and Credits

Certain features of the Service require a paid subscription or credit balance. Subscription fees are billed in advance on a recurring basis. Credits are governed by our Credit Terms. All fees are stated in US dollars and are non-refundable except as expressly provided in these Terms or as required by law. We reserve the right to change pricing with 30 days' notice. Continued use of the Service after a price change constitutes acceptance of the new pricing.

9. Disclaimer of Warranties

The Service is provided "as is" and "as available" without warranty of any kind, express or implied, including but not limited to warranties of merchantability, fitness for a particular purpose, and non-infringement. Security findings are generated by automated analysis and may contain false positives or miss actual vulnerabilities. We do not guarantee that the Service will identify all vulnerabilities in your code. You should not rely solely on this Service for your security posture.

10. Limitation of Liability

To the maximum extent permitted by law, Unpatched.ai and its officers, employees, and affiliates shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising from or related to your use of the Service, including but not limited to damages for loss of profits, data, or other intangible losses. Our total aggregate liability for any claims arising under these Terms shall not exceed the amount you paid us in the twelve (12) months preceding the claim.

11. Termination

You may stop using the Service and delete your account at any time. We may suspend or terminate your access to the Service if you violate these Terms, if required by law, or if we discontinue the Service. Upon termination, your right to use the Service ceases immediately. Sections that by their nature should survive termination (including Disclaimer of Warranties, Limitation of Liability, Intellectual Property, and Governing Law) will continue to apply.

12. Responsible Disclosure

Unpatched.ai is an early-stage, experimental platform. There will be bugs. If you discover a security issue in the Service itself during the course of normal, legitimate use, we ask that you report it to us privately at security@contact.unpatched.ai. We appreciate good-faith reports and will make reasonable efforts to address confirmed issues promptly.

While at this early stage, we do not offer a formal bug bounty program or safe harbor guarantee. Unauthorized testing, scanning, or probing of Unpatched.ai systems is not permitted under these Terms. Deliberately seeking vulnerabilities in the Service, particularly for the purpose of public disclosure, competitive advantage, or to discredit the platform, may result in account termination and legal action. We reserve the right to distinguish between good-faith security research and adversarial conduct, and to respond accordingly.

13. Governing Law

These Terms are governed by and construed in accordance with the laws of the State of Delaware, United States, without regard to its conflict of law provisions. Any disputes arising under these Terms shall be resolved in the state or federal courts located in Delaware.

14. Changes to Terms

We may update these Terms from time to time. If we make material changes, we will notify you by email or by posting a notice on the Service prior to the change becoming effective. Continued use of the Service after changes constitutes acceptance of the updated Terms. The "Last updated" date at the top of this page indicates when the Terms were last revised.

15. Contact

If you have questions about these Terms, contact us at legal@contact.unpatched.ai.