Pricing

Pay when the graph becomes a gate.

Start with public repo evidence. Upgrade when your team needs private repo policy, owner requirements, and audit history.

Pricing

Start free. Turn proof into policy when the team depends on it.

The free tier proves the graph on public code. Paid tiers add private repositories, branch-protection checks, policy controls, and evidence history.

Community

$0forever

For public repos, OSS maintainers, and teams validating reachability before buying.

Public repo PR comments
Reachable path preview
Security surface summary
Known limitations shown
Community support

Recommended

Team

$19per month

For small teams that want private-repo security gates without enterprise ceremony.

Private repositories
arbor/security commit status
Monitor, review, and block modes
Security owner requirements
90-day evidence history

Business

$149per month

For regulated product teams that need review proof and audit-ready history.

Unlimited team members
Policy templates by repo type
Evidence export
Priority support
Quarterly security workflow review

Enterprise

Customannual

For org-wide AppSec programs with SSO, controls, procurement, and custom policy.

SSO / SAML
Custom sensitive sinks
Dedicated support
Deployment options
Security review SLA

Plan comparison

Exactly what changes when you pay.

Capability

Community

Team

Business

Enterprise

Public repos

Unlimited

Private repos

Up to 10

Unlimited

PR security comment

Preview

Full

arbor/security status

Yes

Policy modes

Monitor / Review / Block

Templates + overrides

Custom controls

Security owner approvals

Yes

Custom CODEOWNERS sync

Integration-test requirement

Yes

Custom proof rules

Evidence history

Latest only

90 days

1 year

Custom retention

Audit export

CSV / JSON

SOC2-ready package

SSO / SAML

Yes

Support

Community

Priority

Dedicated

Budget fit

Where Arbor sits beside the tools you already use.

Tool category

Budget owner

Strength

Why Arbor still exists

LLM PR reviewers

Developer productivity

Readable summaries and local suggestions

Not a deterministic security gate

Snyk / Semgrep / SonarQube

AppSec and code quality

Broad rules, CVEs, and policy programs

Still needs PR-time reachability and proof prioritization

Manual senior review

Engineering time

Business context and judgment

Does not scale with AI-generated PR volume

Arbor

AppSec + engineering velocity

Reachable security paths, gates, and evidence

Use alongside scanners; Arbor is the graph evidence layer

Trial checkout currently runs in Stripe test mode until production billing is switched on.

FAQ

Common questions.

Everything about the analysis pipeline, security model, and how Arbor fits your workflow.

Back to Arbor

Pricing

Pay when the graph becomes a gate.

Start with public repo evidence. Upgrade when your team needs private repo policy, owner requirements, and audit history.

Pricing

Start free. Turn proof into policy when the team depends on it.

The free tier proves the graph on public code. Paid tiers add private repositories, branch-protection checks, policy controls, and evidence history.

Community

$0forever

For public repos, OSS maintainers, and teams validating reachability before buying.

Public repo PR comments
Reachable path preview
Security surface summary
Known limitations shown
Community support

Recommended

Team

$19per month

For small teams that want private-repo security gates without enterprise ceremony.

Private repositories
arbor/security commit status
Monitor, review, and block modes
Security owner requirements
90-day evidence history

Business

$149per month

For regulated product teams that need review proof and audit-ready history.

Unlimited team members
Policy templates by repo type
Evidence export
Priority support
Quarterly security workflow review

Enterprise

Customannual

For org-wide AppSec programs with SSO, controls, procurement, and custom policy.

SSO / SAML
Custom sensitive sinks
Dedicated support
Deployment options
Security review SLA

Plan comparison

Exactly what changes when you pay.

Capability

Community

Team

Business

Enterprise

Public repos

Unlimited

Private repos

Up to 10

Unlimited

PR security comment

Preview

Full

arbor/security status

Yes

Policy modes

Monitor / Review / Block

Templates + overrides

Custom controls

Security owner approvals

Yes

Custom CODEOWNERS sync

Integration-test requirement

Yes

Custom proof rules

Evidence history

Latest only

90 days

1 year

Custom retention

Audit export

CSV / JSON

SOC2-ready package

SSO / SAML

Yes

Support

Community

Priority

Dedicated

Budget fit

Where Arbor sits beside the tools you already use.

Tool category

Budget owner

Strength

Why Arbor still exists

LLM PR reviewers

Developer productivity

Readable summaries and local suggestions

Not a deterministic security gate

Snyk / Semgrep / SonarQube

AppSec and code quality

Broad rules, CVEs, and policy programs

Still needs PR-time reachability and proof prioritization

Manual senior review

Engineering time

Business context and judgment

Does not scale with AI-generated PR volume

Arbor

AppSec + engineering velocity

Reachable security paths, gates, and evidence

Use alongside scanners; Arbor is the graph evidence layer

Trial checkout currently runs in Stripe test mode until production billing is switched on.

FAQ

Common questions.

Everything about the analysis pipeline, security model, and how Arbor fits your workflow.