Privacy Policy

What We Collect

SpiderRating collects minimal data necessary to operate the service:

• GitHub OAuth: When you sign in, we receive your GitHub username, avatar URL, and public profile information. We do not access private repositories.
• Submissions: Repository URLs and metadata you submit for evaluation.
• Analytics: Anonymous page view counts. We do not use third-party tracking scripts.

How We Use Your Data

• Authenticate your identity for rate-limited submissions
• Display your submissions and their scan status
• Improve our scanning engine and scoring accuracy

What We Don't Do

• We do not sell or share personal data with third parties
• We do not track you across other websites
• We do not access your private repositories
• We do not store GitHub access tokens — authentication uses session cookies

Public Data

Security ratings, scores, and grades for scanned tools are public by design. This includes the repository name, owner, score breakdown, and detected issues. If you submit a tool for evaluation, the resulting rating will be publicly visible.

Data Retention

Account information is retained as long as your account is active. You can request deletion of your account and associated data by contacting us via GitHub.

Cookies

We use a single session cookie for authentication. We do not use advertising or tracking cookies.