Connect a repo and get a Slop Index, a security & licence-risk breakdown, and the £ cost to rebuild it — then a fixed-price plan to clean it up.
Free report · private repos OK · runs in an isolated sandbox.

The report is always free. These are for when you want to do something about it — a verdict, a plan, or shipped code. Every package starts with a deposit and a fixed, agreed scope. No surprise invoices.
Founders & CTOs who need a verdict before deciding what to do.
No fixes — this is the diagnosis, not the cure.
Teams that will do the work but need to know what to do first.
I plan and guide — your team writes the code.
When you want it fixed, not just documented.
Fixed scope agreed up front — no surprise invoices.
Link a repo (private OK). The engine clones it into an isolated sandbox and runs the full toolchain in ~60 seconds.
Slop Index, security, licences, cost-to-replicate and an AI summary — yours to keep, no payment needed.
Snapshot for a verdict, Audit for a plan, Sprint for the actual fixes. Deposit secures your slot.
A walkthrough, a prioritised roadmap, or shipped pull requests — depending on what you bought.
It runs in an isolated, throwaway sandbox that’s destroyed after analysis. I never publish your code, and I’ll sign an NDA before we start if you want one.
The Snapshot is the full diagnosis + a call. The Audit adds a prioritised, costed roadmap your team can execute. The Sprint means I write and ship the fixes as reviewed pull requests.
It’s a weighted composite of complexity, duplication, dependency & licence risk and security findings — measured with the same industry tools a senior reviewer uses (scc, syft, grype, semgrep) plus an AI pass. Lower is better; healthy codebases sit under 30.
Then you’ve spent nothing — the report is free — and you have proof for your board. I only recommend a paid package when there’s real work worth doing.
Anything in a git repo — JS/TS, Python, PHP/Laravel, Go, Ruby, Java and more. The analysis is language-aware and the dependency/licence scan covers every major ecosystem.
If an audit doesn’t give you something genuinely actionable, I refund the deposit. I take a limited number of engagements a month so each one gets real attention.
Slop Index, AI Quotient, cost-to-replicate, every dependency & licence, security and static-analysis findings, contributor breakdown, an AI executive summary — plus Ada, an assistant that answers questions about your code.
Open the live example report →Connect GitHub, pick a repo (private OK) and a branch. The full report is free — the diagnosis is on me.
Scan my repo — freePrefer to look first? See a live example report →