1. Acceptance of Terms

By accessing or using DepShield ("the Service"), you agree to be bound by these Terms of Service. If you do not agree to these terms, do not use the Service.

2. Description of Service

DepShield provides vulnerability scanning for software dependencies. The Service analyzes package manifest files (such as package.json) and reports known security vulnerabilities from public databases including OSV and CISA KEV.

3. Use of Service

You may use the Service for lawful purposes only. You agree not to:

Use the Service to scan files you do not have authorization to analyze
Attempt to overwhelm, disrupt, or interfere with the Service
Use automated tools to access the Service in a manner that exceeds reasonable use
Reverse engineer or attempt to extract source code from the Service

4. Data and Privacy

Files uploaded for scanning are processed in memory and are not permanently stored unless you explicitly choose to save a shareable report. Saved reports are retained for 7 days and then automatically deleted. See our Privacy Policy for details.

5. No Warranty

THE SERVICE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. We do not guarantee that scan results are complete, accurate, or current. Vulnerability data is sourced from third-party databases and may contain errors or omissions.

6. Limitation of Liability

In no event shall DepShield be liable for any indirect, incidental, special, consequential, or punitive damages arising from your use of the Service. Our total liability shall not exceed the amount you paid for the Service (if any).

7. Changes to Terms

We may modify these terms at any time. Continued use of the Service after changes constitutes acceptance of the modified terms.

8. Contact

For questions about these terms, contact us at legal@depshield.dev.