Start with 50 free AI credits and 10 free scans, no card. Pick the plan that matches your team, your shipping cadence, and your compliance bar. Pay for exactly the seats, repos and AI work you need, every plan ships SAST, SCA, IaC and secret detection out of the box.
For solo devs shipping side projects with an AI agent.
billed annually ($231 / yr)
For small product teams shipping every week.
billed annually ($1,969 / yr)
For platform teams scaling a security programme.
billed annually ($7,689 / yr)
Custom deployment for regulated, multi-team orgs.
Talk to sales
Pick the number of repositories and developer seats you need. We surface the right plan and the exact monthly price, add-ons included.
Add-ons are billed monthly. Annual billing applies to the base plan.
For small product teams shipping every week.
| Feature | Developer | Team | Scale★ Most popular | Enterprise |
|---|---|---|---|---|
| Pricing & limits | ||||
| Repositories | 3 | 10 (up to 20, +€10/mo each) | 25 (up to 50, +€10/mo each) | Unlimited |
| Developer seats | 1 | 5 (up to 10, +€20/mo each) | 15 (up to 25, +€20/mo each) | Unlimited |
| AI credits / month | 100 | 1,500 | 5,000 | Unlimited |
| Static scans (SAST/SCA/IaC/Secrets) | Unlimited | Unlimited | Unlimited | Unlimited |
| Core security scanners | ||||
| AI-BOM · Discovery & cataloging (EU AI Act / NIST AI RMF) | ✓ | ✓ | ✓ | ✓ |
| SAST · Static analysis with reachability | ✓ | ✓ | ✓ | ✓ |
| SCA · Dependencies + license risk | ✓ | ✓ | ✓ | ✓ |
| Secret Detection · Catch leaked tokens before commit | ✓ | ✓ | ✓ | ✓ |
| License Compliance · Open-source license risk, classified | ✓ | ✓ | ✓ | ✓ |
| IaC · Terraform · CloudFormation · Ansible · K8s | ✓ | ✓ | ✓ | ✓ |
| Container Security · Image scanning + runtime context | - | ✓ | ✓ | ✓ |
| CI/CD · GitHub Actions · GitLab CI · Jenkinsfile · Tekton | ✓ | ✓ | ✓ | ✓ |
| BLSA (business-logic security) | - | - | Early access | ✓ |
| Integrations | ||||
| GitHub & GitLab | ✓ | ✓ | ✓ | ✓ |
| IDE plugins (VS Code, JetBrains, Cursor, Claude Code) | ✓ | ✓ | ✓ | ✓ |
| VibeDefend · agent-time review on every prompt | ✓ | ✓ | ✓ | ✓ |
| CI/CD (GitHub Actions, GitLab CI, Jenkins, Azure DevOps, Bitbucket Pipelines) | - | ✓ | ✓ | ✓ |
| REST API | - | ✓ | ✓ | ✓ |
| Slack integration | - | ✓ | ✓ | ✓ |
| Container Registries (Docker Hub, GCR, ACR, Quay, GitHub/GitLab Registries, AWS ECR, Harbor, JFrog) | - | ✓ | ✓ | ✓ |
| Task management (Jira, Linear) | - | ✓ | ✓ | ✓ |
| Capabilities | ||||
| Cybe AutoFix (verified patches) | ✓ | ✓ | ✓ | ✓ |
| Cybe Security Champion (IDE copilot) | ✓ | ✓ | ✓ | ✓ |
| Zero-Day Threat Monitoring | ✓ | ✓ | ✓ | ✓ |
| Business-context engine | - | Basic | Advanced | Custom |
| Role-Based Access Control (RBAC) | - | ✓ | ✓ | Advanced |
| Security Policies | - | - | ✓ | ✓ |
| SBOM generation (CycloneDX, SPDX) | - | - | ✓ | ✓ |
| Report Generation (OWASP, CWE exports) | - | - | ✓ | ✓ |
| Reports by Scanner Type | - | - | - | ✓ |
| SSO / SAML / SCIM | - | - | - | ✓ |
| Private deployment / on-premise | - | - | - | ✓ |
| Services | ||||
| Community support | ✓ | ✓ | ✓ | ✓ |
| Email support | - | ✓ | ✓ | ✓ |
| Dedicated Slack channel | - | - | ✓ | ✓ |
| Response time | Best effort | Within 72 hours | Within 24 hours | 24/7 Priority |
| Account manager | - | - | - | ✓ |
| Onboarding workshop | - | - | ✓ | ✓ |
| Uptime SLA | Best effort | Best effort | Best effort | 99.5% |
| Roadmap influence | - | - | Quarterly | Direct |
Every account starts with 50 AI credits and 10 free static scans, no card, no time limit. Spend the credits on Cybe AutoFix patches and BLSA business-logic scans. The 10 scans cover SAST, SCA, IaC and secret detection. Paid plans unlock unlimited static scans, so you upgrade the day you need more.
AI credits power Cybe AutoFix patch generation and BLSA business-logic analyses. Static scans, SAST, SCA, IaC and secret detection, never consume credits. They're unlimited on every paid plan.
Yes. Upgrade from your dashboard at any time. Changes prorate to the day.
We run two isolated regions: EU (eu.cybedefend.com) and US (us.cybedefend.com). You pick at signup, your data stays where you put it. Enterprise customers can deploy in a private VPC or on-premise.
Scale and Enterprise share the same 99.5% SLA. Scale runs on shared infrastructure, built for platform teams scaling a security programme. Enterprise gives you dedicated infrastructure (VPC or on-prem), SSO/SAML/SCIM, advanced RBAC, 24/7 support and a named account manager, for regulated, audit-heavy organisations.
One command. Every coding agent on your laptop wired to CybeDefend: business rules mined from your code, security rules from the frameworks your auditors expect, action guards that block dangerous calls before they fire.
npx -y @cybedefend/vibedefend@latest install
Claude Code
Cursor
Windsurf
VS Code Copilot