Terms of Service

1. Acceptance of Terms

These Terms of Service ("Terms") constitute a legally binding agreement between you and Crack Thump Pty Ltd (ABN pending) ("Company," "we," "our" or "us") regarding your use of CodeMarine, including the desktop software (CLI, daemon, MCP server, VS Code extension), website and related services (collectively, the "Service").

By downloading, installing or using CodeMarine you agree to be bound by these Terms. If you do not agree, do not use the Service.

2. Description of Service

CodeMarine is a local-first AI code security platform. It runs entirely on your machine and scans code for security vulnerabilities with a focus on threats introduced by AI coding assistants. The Service includes:

• Guardian: Real-time file watcher that detects vulnerabilities at file save (under 50ms)
• MCP Server: Model Context Protocol integration providing 33 security tools to AI assistants
• CLI: Command-line interface for scanning, configuration and license management
• VS Code Extension: IDE integration communicating with the local daemon
• Intelligence Feed: CVE advisories and security briefings matched to your project dependencies
• Pattern Database: Regularly updated security detection patterns

Core design principle: All security scanning, code analysis and file reading happens locally on your machine. CodeMarine never sends your source code to any external server.

3. License Tiers and Fair Use

3.1 Free Tier (Scout)

CodeMarine offers a free tier with access to core security scanning features. The free tier includes bundled offline patterns and basic vulnerability detection. No credit card required. No time limit.

3.2 Paid Tiers

Paid tiers (Scout Pro, Squad, Platoon) provide access to additional features including the full pattern database, intelligence feed, slopsquatting detection, rules file scanning, prompt interception proxy and team licensing. Current pricing and plan details are available on our website.

3.3 Fair Use

Individual licenses are for use by a single developer. Team licenses (Squad, Platoon) allow the specified number of seats. Sharing license keys between users not covered by your tier is prohibited. We may revoke licenses used in violation of fair use.

3.4 License Activation

Paid licenses are activated via a license key (JWT). License validation requires periodic communication with our servers (see Privacy Policy section 3c). Licenses are cached locally for 24 hours with a 30-day grace period if our servers are unreachable.

4. Beta Programme and Early Access

CodeMarine is currently in beta. By participating in the beta programme you acknowledge:

• The software may contain bugs, errors and incomplete features
• Features may change or be removed without notice
• Beta access is provided free of charge. We will never charge you without explicit consent
• We will provide reasonable notice before transitioning beta users to paid plans
• Beta feedback and bug reports help improve the product but are not guaranteed to be implemented

4.1 Referral Programme

The beta referral programme allows users to earn rank-based rewards by referring other developers. Referral rewards (queue position upgrades, free licenses, team seats) are subject to availability and may be modified or discontinued at our discretion. Referral codes must be shared organically. Automated, fraudulent or spam-based referrals will be voided and may result in account termination.

5. User Responsibilities

You agree not to:

• Use CodeMarine to circumvent, disable or interfere with security controls in other software
• Reverse engineer, decompile or disassemble the CodeMarine software or security patterns
• Extract, redistribute or commercially exploit the pattern database
• Share license keys outside the scope of your licence tier
• Use the Service for competitive intelligence or to develop competing products
• Interfere with or disrupt CodeMarine servers or infrastructure
• Remove, alter or obscure proprietary notices in the software
• Use the prompt interception proxy to intercept traffic from users who have not consented

6. Intellectual Property

6.1 Our Intellectual Property

The CodeMarine software, security patterns, pattern database, intelligence feed content, documentation, trademarks ("CodeMarine," "Sarge," "Guardian") and all related intellectual property are owned by Crack Thump Pty Ltd and protected by copyright, trademark and other intellectual property laws.

The security pattern database is proprietary. Patterns are licensed for use within CodeMarine only and may not be extracted, redistributed or used in other tools.

6.2 Your Code Remains Yours

You retain all ownership rights to your code. CodeMarine does not claim any intellectual property rights over code you scan using the Service. All code analysis is performed locally on your machine and your source code is never transmitted to our servers.

6.3 Feedback

Feedback, suggestions or improvement ideas you provide regarding the Service may be used by us without restriction or compensation. Pattern quality feedback (opt-in) is anonymised and used to improve detection accuracy.

7. Data Protection and Privacy

Your privacy is central to our product design. Our Privacy Policy is incorporated into these Terms by reference. Key points:

• All code scanning happens locally. Your source code never leaves your machine
• Only anonymised metadata is transmitted to our servers (opt-out available)
• We do not sell, trade or share your personal information with third parties
• You have full control over data collection with specific opt-out mechanisms
• The prompt interception proxy requires explicit opt-in and applies mandatory credential redaction

8. Payment Terms

8.1 Billing

• Paid subscriptions are billed in advance on a monthly or annual basis
• All fees are in USD unless otherwise stated
• We may change pricing with 30 days' notice to existing subscribers
• Failure to pay may result in downgrade to the free tier

8.2 Refunds

Annual subscriptions include a 14-day refund window from the date of purchase. Monthly subscriptions are non-refundable. Refund requests should be sent to [email protected].

9. Service Availability

9.1 Local Software

CodeMarine's core scanning functionality runs locally and does not depend on our servers. Even if our infrastructure is unavailable, local scanning continues to work with cached patterns and a valid license cache (up to 30 days).

9.2 Server-Dependent Features

Pattern sync, intelligence feed, license validation and telemetry upload require connectivity to our servers. We strive to maintain high availability but do not guarantee uninterrupted access to these features. We may perform maintenance that temporarily affects server availability.

10. Disclaimers and Limitation of Liability

10.1 No Security Guarantee

CodeMarine is a security tool, not a security guarantee. While we work to detect vulnerabilities accurately and promptly, no scanner catches everything. You remain responsible for the security of your code and applications. CodeMarine is one layer in a defence-in-depth strategy, not a replacement for security review, testing and best practices.

10.2 "As Is" Disclaimer

THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT. WE DO NOT WARRANT THAT THE SERVICE WILL BE UNINTERRUPTED, ERROR-FREE OR THAT ALL SECURITY VULNERABILITIES WILL BE DETECTED.

10.3 Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, OUR TOTAL LIABILITY FOR ANY CLAIMS ARISING FROM OR RELATED TO THE SERVICE SHALL NOT EXCEED THE AMOUNT YOU PAID FOR THE SERVICE IN THE 12 MONTHS PRECEDING THE CLAIM. IN NO EVENT SHALL WE BE LIABLE FOR INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL OR PUNITIVE DAMAGES.

This limitation applies to damages arising from security incidents, data loss, missed vulnerability detections or any other use of or inability to use the Service.

11. Indemnification

You agree to indemnify and hold harmless Crack Thump Pty Ltd, its officers, directors, employees and agents from any claims, damages, losses or expenses (including reasonable legal fees) arising from your use of the Service, violation of these Terms, infringement of any third-party rights or your failure to maintain adequate security practices independent of CodeMarine.

12. Termination

Either party may terminate these Terms at any time. Upon termination:

• Your license key will be deactivated and paid features will stop working
• Local scanning with free-tier patterns will continue to function
• All local data remains on your machine under your control (delete ~/.codemarine/ and ~/.cache/codemarine/ to remove)
• Server-side data will be deleted per our Privacy Policy retention schedule
• You remain liable for any outstanding fees
• Sections 6, 10, 11 and 12 survive termination

We reserve the right to suspend or terminate your access for violation of these Terms, fraudulent referral activity or abuse of our infrastructure.

13. Open Source Components

CodeMarine incorporates open source software components. These components are subject to their respective open source licences, which take precedence over these Terms for those specific components. A list of open source dependencies and their licences is available in the software distribution.

14. Governing Law and Disputes

These Terms are governed by the laws of New South Wales, Australia. Any disputes arising from these Terms or the Service shall be submitted to the exclusive jurisdiction of the courts of New South Wales, Australia. Before commencing legal proceedings, both parties agree to attempt resolution through good-faith negotiation for a period of 30 days.

15. Changes to Terms

We may modify these Terms at any time. Material changes will be communicated via email to registered users and posted on this page with an updated "Last updated" date. Continued use of the Service after changes become effective constitutes acceptance of the modified Terms. If you do not agree to the changes, you may terminate your use of the Service.

16. Contact Information

If you have questions about these Terms, please contact us: