You set the budget. We cap the bill.
Pick a credit budget for each scan. You pay only for what the scan uses, never more than the cap.
If a scan runs over your cap, we absorb the difference: no surprise bills.
Standard
Solid coverage for ongoing scan work. A natural starting point. Cancel anytime.
Capped at $5,000/month. You never pay more.
- Up to 10 repositories
- Up to 10 team members
- Top up with credit bundles anytime. Bundle pricing is the same on every plan.
- Subscription credits roll over once, then forfeit; bundle credits never expire
- Standard support
Pro
Deeper scrutiny and more scanning headroom as your code evolves and complexity grows. Cancel anytime.
Capped at $15,000/month. You never pay more.
- Up to 25 repositories
- Up to 25 team members
- Top up with credit bundles anytime. Bundle pricing is the same on every plan.
- Subscription credits roll over once, then forfeit; bundle credits never expire
- Priority support
Critical
Mission-critical posture: heavy, repeated scanning across high-stakes code. Leave no stone unturned. Cancel anytime.
Capped at $30,000/month. You never pay more.
- Unlimited repositories
- Unlimited team members
- Top up with credit bundles anytime. Bundle pricing is the same on every plan.
- Subscription credits roll over once, then forfeit; bundle credits never expire
- Dedicated support
How credits work
Subscribe to a plan
Each plan ships with a monthly credit allowance and a hard billing cap. Top up with extra bundles anytime if you need more.
Set a per-scan budget
Use a slider to pick the max credits each scan can spend. Remembered per repo.
Pay actual compute
You're charged for what the scan actually used, capped at your budget. Overage on the house.
Typical credit usage
Rough ranges based on what we've seen so far. Your actual usage depends on circuit complexity, custom constraints, and which flows you run. Once you scan a repo, the launch page shows budget hints from past runs.
| Repo size | Example | Typical scan |
|---|---|---|
| Small (< 1k LOC) | Single Circom or Noir circuit | 200 – 600 credits |
| Medium (1k – 5k LOC) | Multi-component zk app, gnark library | 600 – 2,000 credits |
| Large (5k – 20k LOC) | Production rollup circuits, full halo2 stack | 2,000 – 6,000 credits |
| XL (> 20k LOC) | zkEVM, large monorepo with multiple circuits | 6,000 – 10,000+ credits |
Cryptography-heavy code (custom hashes, pairings, MPC) tends to push toward the upper end of each band.
Frequently Asked Questions
What's a credit?
Credits are the unit you spend to run scans. When you launch a scan you pick a credit budget; we never charge above it, and you only pay for the credits actually consumed by the analysis.
What happens if a scan goes over budget?
You're not charged for the overage — we absorb it. The scan finalizes whatever it can within the budget, and you get a "we covered $X for you" note on the scan page. If a particular repo keeps running over, the launch page will suggest raising the cap on your next scan.
How much do scans typically cost?
It depends on codebase size and complexity. A small Circom repo might run a few hundred credits; a large multi-component circuit audit can go into the thousands. Once you've run a few scans on a repo, the launch page shows you what past scans on that repo typically used.
Do unused credits expire?
Top-up bundle credits never expire. Subscription credits (your monthly plan allowance) are use-it-or-lose-it: unused credits from one month roll over once into the next billing cycle, then forfeit. The intent is for you to spend each month's allowance on that month's work, with a one-cycle grace window for spillover.
Can I cancel anytime?
Yes. Subscriptions are month-to-month with no long-term commitment. When you cancel, you keep your plan (and that month's credit allowance) through the end of the current billing cycle, then your subscription ends and the project goes back to "no plan", which means it can't start new scans. You can resubscribe at any time. You can also switch between Standard, Pro, and Critical anytime from your billing portal.
What if I need a full manual audit?
zkao is built by zkSecurity, the leading ZK audit firm. For comprehensive manual audits, you can contact our audit team directly.