Terms of Service
written for developers.

Acceptance

By using kief.dev, you agree to these terms. "You" means you individually, and if you're using kief.dev on behalf of an organization, your organization as well. If you don't agree, don't use the service. These terms apply to all parts of kief.dev including the free developer tools, the Vekt API, the browser extension, and anything else hosted on this domain.

Services

kief.dev provides two categories of service:

• Free developer tools -- DNS lookup, SSL analysis, security header checks, encoding utilities, diff tools, and others. No account required. No rate limits on normal use.
• Vekt -- Supply chain security scanning for 22 lockfile formats across 12 package ecosystems. Free and unlimited. No account required.

We reserve the right to change, suspend, or discontinue any feature at any time.

Accounts

Vekt does not require an account. The CLI scans locally and queries OSV.dev directly. No data passes through our servers.

Acceptable use

The short version: use the tools for what they're built for. Specifically, do not:

• Scrape the free developer tools in an automated loop to build a competing service. These tools make real network requests on your behalf -- bulk automation puts load on third-party infrastructure we pay for.
• Use the Vekt API to build a proxy or resale service that passes our enrichment data to your own customers as if it were your own product.
• Attempt to reverse engineer the Vekt enrichment scoring, threat signal weighting, or internal analysis algorithms through systematic probing or side-channel analysis.
• Use the service in any way that violates applicable law, including attempting to scan infrastructure you do not own or have permission to test.
• Interfere with service availability for other users through excessive automated requests, denial-of-service attempts, or similar actions.

Normal use of the Vekt API in your own build pipelines, scripts, and developer workflows is exactly what it's built for -- no restrictions there.

Intellectual property

Output generated by the tools on kief.dev is yours. Scan results, decoded values, DNS records, SSL certificate data -- whatever the tool produces for your query, you own it. We claim no rights to tool output.

The kief.dev site, the Vekt product, and the Kief Studio name and logo are trademarks of Kief Studio LLC. Don't use our names, logos, or branding in a way that implies endorsement or affiliation without our written permission. Linking to us is fine. Saying "built with Vekt" in your docs is fine. Implying we partner with or endorse your product is not.

Pricing

Vekt is free. No paid plans, no scan limits, no billing.

Disclaimers

kief.dev tools and Vekt scans are provided as-is. Security scanning is advisory -- it tells you about known vulnerabilities in the packages you are using based on public vulnerability databases. It does not guarantee that your software is secure, and it does not detect unknown vulnerabilities, zero-days, or vulnerabilities not yet disclosed to OSV.dev or NVD.

We are not liable for: missed vulnerabilities in your dependencies, false positives that cause you to remove a package unnecessarily, security incidents that occur despite clean scan results, or decisions you make based on scan results. Security scanning is one input into a broader security practice, not a substitute for one.

DNS, SSL, and network tools reflect the state of the internet at the moment of the request. Cached DNS, CDN behavior, and propagation delays mean results may not reflect your origin configuration. We make no guarantees about the accuracy of results from third-party infrastructure.

Limitation of liability

To the maximum extent permitted by law, kief.dev and Vekt are provided as-is with no warranties. Our total liability to you for any claim arising out of or related to these terms or the use of kief.dev is zero. Vekt is a free tool; no payment is accepted or expected.

We are not liable for indirect, incidental, special, consequential, or punitive damages, including but not limited to lost profits, lost data, business interruption, or reputational harm, even if we were advised of the possibility of such damages.

Termination

You can stop using kief.dev at any time. If you want your data deleted, email privacy@kief.studio.

We can suspend or terminate your access if you violate these terms. For serious violations (scraping, resale), we may terminate without notice. For other issues, we'll try to give you a heads-up and a chance to fix it first.

Governing law

These terms are governed by the laws of the Commonwealth of Massachusetts, USA, without regard to conflict of law principles. Any disputes arising from these terms or your use of kief.dev will be resolved in the state or federal courts located in Massachusetts. You consent to personal jurisdiction in those courts.

Changes to these terms

We may update these terms as the service evolves. We'll update the "last updated" date at the top when we do. Continued use of the service after an update constitutes acceptance of the updated terms.