Frequently asked questions
Everything you need to know about Bouncer.
What does Bouncer do?
Bouncer screens every npm and pip install for typosquatting, known malicious packages, and supply chain attacks before anything runs on your machine.
Is Free CLI really free forever?
Yes. Local scanning will always be free. We make money from Cloud AI subscriptions, not from your data.
What does Cloud AI add?
Cloud AI adds continuous AI audits of npm and pip package source code & install scripts, deep transitive dependency scanning, and real-time threat detection.
Is my scan data private?
The free CLI runs locally and doesn’t send package names to our servers. On Cloud, we log which public npm and PyPI packages you look up so we can prioritize deeper audits, but we never store your source code. See the privacy policy for details.
Can I cancel anytime?
Yes. Cancel from the CLI with bouncer account. You keep Cloud AI access until the end of the billing period.
Does bouncer slow down my installs?
Most scans complete in under 2 seconds. You’re always in control.