Book a demo →
Pricing

Plans that scale
with your team.

Every plan includes the full detection engine, the install-time proxy and the dashboard, across Java, JavaScript, Python, Go and .NET. You only choose the support and governance you need.

JavaScript / npm Python / PyPI Go .NET / NuGet Java
Starter

Small teams and startups putting supply-chain coverage in place.

25developers
included
Let's talkscales with your developers · 30-day proof of value
  • Full detection engine, all signals
  • Install-time proxy / firewall
  • Security dashboard
  • VSCode extension + xyz CLI
  • CI/CD gating
  • Community support
  • Per-machine attribution
  • SAML SSO
Get started free →
Most popular
Business

Growing engineering orgs that need attribution and priority support.

75developers
included
Let's talkscales with your developers · 30-day proof of value
  • Everything in Starter
  • Per-machine install attribution
  • SIEM / XDR integrations
  • Priority email support
  • Onboarding & priority setup
  • SAML SSO
Talk to sales
Enterprise

Regulated orgs needing SSO, SLAs and dedicated support.

unlimited
developers
Customtailored to your org · partner pricing available
  • Everything in Business
  • SAML 2.0 SSO (Okta, Azure AD, Google)
  • Org-wide enforce-SSO + require-MFA
  • SLA with uptime guarantee
  • Dedicated support + onboarding
  • Partner / reseller options
Talk to sales
// every plan includes
Detection engine · install-time proxy · dashboard · CLI · VSCode · CI/CD gating · 30-day proof of value
npm Python Go NuGet Java

Pricing is tailored to developer count, ecosystems and support needs. All plans include a 30-day proof of value.

Compare plans

What's included
in each plan.

CapabilityStarterBusinessEnterprise
Developers includedUp to 25Up to 75Unlimited
Full detection engine (all signals)
Install-time proxy / firewall
Security dashboard
EcosystemsnpmPythonGoNuGet
VSCode extension + CLIVSCode
CI/CD gating (depalert)GitHub ActionsGitLabAzure DevOps
Per-machine install attribution·
SIEM / XDR integrationsSplunkQRadarSentinelOnelimited
SAML 2.0 SSO (Okta / Azure AD / Google)··
JIT provisioning + org auth policies··
SupportCommunityPriority emailDedicated + SLA
30-day proof of value
Pricing FAQ

Questions, answered.

How does pricing work?

Pricing scales with your number of developers and the ecosystems you cover, billed monthly or annually. Every plan includes the full detection engine, the install-time proxy and the dashboard. Contact sales for a quote tailored to your team.

Which ecosystems are covered?

Java, JavaScript (npm), Python (PyPI), Go and .NET (NuGet), across the xyz CLI, the VSCode extension, CI/CD gating and the runtime proxy. Same decision brain everywhere.

JavaScript / npmPython / PyPIGo.NET / NuGetJava
Is there a free trial?

Yes. Every plan includes a 30-day proof of value, so you can validate detections against your own dependencies before committing.

Cloud or self-managed?

The dashboard runs as a managed service and the proxy deploys into your environment, on developer machines, CI runners and Kubernetes. Enterprise plans include additional self-managed options.

Do you offer partner or reseller pricing?

Yes, partner and reseller pricing is available. See the CyberXYZ partner program for reseller, technology and MSSP options, or apply to become a partner.

How do I get a quote?

Book a 15-minute demo below. We'll scope your team and ecosystems and send pricing the same week.

// the ask

Let's price it
for your team.

Tell us your team size and ecosystems. We'll send a tailored quote and set up a 30-day proof of value.

  • 30-day proof of value
  • Tailored to your team
  • Partner pricing available

Thanks! We'll be in touch.

Check your inbox. We'll reach out within 24 hours.

Talk to sales

We'll respond within 24 hours. No spam, ever.