Terms for using SternSleuth validation workflows

SternSleuth provides public exposure previews, continuous exposure validation, VDP and managed BBP workflow support, researcher signal intake, AI-assisted triage, and reporting features. Some features require a paid subscription, package activation, or written authorization.

You may only submit domains, applications, assets, repositories, evidence, or targets that you own, administer, or are explicitly authorized to test. You are responsible for ensuring your use of SternSleuth complies with your legal, contractual, and internal security obligations.

You must not use SternSleuth to attack third-party systems, bypass authorization, disrupt services, harvest data, or submit false, abusive, or misleading information.

You are responsible for keeping account credentials secure and for activity in your workspace. SternSleuth may restrict or suspend access if we detect abuse, payment risk, unauthorized testing, or activity that may harm other users or infrastructure.

Paid packages, validation workflows, add-ons, or managed services may require successful payment before access is unlocked. Package scope, renewal terms, usage limits, and included capabilities are shown during checkout or in the relevant agreement.

SternSleuth reports are intended to help prioritize security review and remediation. They are not a guarantee that an environment is vulnerability-free, breach-proof, or compliant with every requirement. Customers remain responsible for remediation decisions and production change control.

For service, billing, or terms questions, contact founder@sternsleuth.dev.