Source Protection & Software Licensing

Build.
Protect.
Deliver.

Protect your software from theft, reverse engineering, and unauthorized redistribution while taking full control of licensing, version management, and desktop delivery with Bolt Dev and Bolt Client.

Start Free  Download Apps
Free plan available No credit card  Windows
① Dev Commit
② Activate License
③ Start & Verify
④ Remove & Reset
hashed source + v2.1.0 license check + unlock
BoltHash
Storing…
Bolt Dev
client-portal v2.1.0
Source hashed & protected
12
Projects
248
Licenses
↑ COMMIT & PUSH TO SERVER
Uploaded — 3.2 MB hashed source
Bolt Dev
Bolt Client
Activate License
BOLT-A1B2-C3D4-E5F6
→ Activate License
Verifying with server…
client-portal v2.1.0 licensed
▶ Start App
License activated — ready to run
client-portal v2.1.0 running
Tamper Blocked
Integrity Check
Heartbeat Active
IP Lock Verified
License Valid
Bolt Client
① Deploy ② License ③ Verify
Bolt Dev
commit hashed source · v2.1.0
PUSH ↑
hashed source
BoltHash Server
stored, versioned & signed
STORED ✓
license activation
Bolt Client
enter key → pull & run
ACTIVATE
runtime verification
Security Verified
Tamper
Integrity
Heartbeat
License
The Ecosystem

Three tools. One platform.

From source code protection to desktop app delivery, BoltHash covers the full software development and licensing lifecycle.

For Developers
Bolt Dev

Desktop app for developers to protect source code, manage software licenses, monitor clients, and distribute updates.

  • Project & license dashboard
  • One-click source protection
  • Real-time client monitoring
  • BGit version control
For End Users
Bolt Client

Desktop app for clients to receive, activate, and run protected software delivered by their vendors.

  • License key activation
  • Pull & run protected apps
  • Automatic updates
  • Simple, non-technical UI
For Automation & CI/CD
bolt CLI

Command-line tool for automated source protection, CI/CD pipeline integration, and advanced scripting.

  • bolt protect / bolt up
  • CI/CD integration ready
  • Windows, macOS & Linux
  • npm or binary install
Who Uses BoltHash?

Built for every software business

Whether you sell software, deliver client projects, or work as a freelancer — BoltHash has the right tool for you.

Software Vendors

Sell licensed software with device-bound keys. Enforce usage limits, expiry dates, and instant revocation. Know exactly who runs your software.

View Pro Plans Compare Plans
Agencies & Freelancers

Deliver protected Node.js apps to clients and retain IP ownership. Your source code stays yours — clients can run it, not read it.

Start Free Trial Compare Plans
Indie Developers

Monetize your Node.js tools with license-gated access. Free and paid tiers, key management from a dashboard, scale as you grow.

Get Started Free View Pricing
How It Works

From code to client in 4 steps

BoltHash handles the entire delivery pipeline. Protect once, deploy everywhere, control always.

1
Create Project

Open Bolt Dev or the CLI, create a project, and point it to your Node.js source code.

2
Protect Source

BoltHash obfuscates your code, computes SHA-256 hashes, and signs the integrity manifest.

3
Generate License

Create a device-bound license key with custom expiry, device limits, and usage controls.

4
Client Runs App

Client opens Bolt Client, enters their key, and runs the app. Online verification ensures authorized use only.

Core Features

Everything to protect and deliver software

Source Code Obfuscation

Multi-pass obfuscation with identifier renaming, string encryption, control flow flattening, and dead code injection.

License Key Management

Create, manage, and revoke license keys. Set expiry dates, device limits, and usage quotas per key from your dashboard.

Device Binding

Hardware fingerprinting ties licenses to specific machines. Prevent key sharing and unauthorized redistribution.

Live Heartbeat

Real-time monitoring detects key sharing. Apps auto-terminate when licenses are revoked or expired mid-session.

Built-in Version Control

BGit stores versioned snapshots of your protected source on the BoltHash server. Roll back, branch, and push via CLI.

On-Demand Delivery

Clients pull the latest protected build via Bolt Client. Push updates instantly without manually sending files.

Desktop Apps

Download and get started in minutes

Bolt Dev for developers. Bolt Client for your customers — it is free.

Bolt Dev

The developer dashboard for managing projects, licenses, and deploying protected apps.

 Download for Windows

Latest version

Bolt Client

Install on client machines to receive and run protected apps. Share this with your customers for free.

 Download for Windows

Free for end users

All download options (CLI, npm) →
Common Questions

Frequently asked questions

BoltHash obfuscates your Node.js JavaScript source files (identifier renaming, string encryption, control flow flattening, dead code injection), computes SHA-256 hashes of all protected files, and creates a HMAC-signed integrity manifest. On runtime, the bolt engine re-verifies hashes and checks the license before launching your app.
Bolt Client is a free desktop app for your customers (end users). They install it, enter the license key you provide, and use it to pull and run your protected app. No technical knowledge needed.
Bolt Dev is the developer dashboard desktop app. Use it to manage your projects, generate and revoke license keys, monitor active clients, deploy updates via BGit, and view analytics.
BoltHash uses multi-layer defenses: obfuscated source code, SHA-256 integrity checks, HMAC manifest signing, Ed25519 server signatures, device fingerprinting, and live heartbeat monitoring. No protection is absolute, but BoltHash significantly raises the cost of attack and gives you instant revocation control.
Yes. The free plan includes the bolt CLI with SHA-256 integrity checking and local license verification, no server required. Paid plans add online enforcement, device binding, heartbeat monitoring, BGit, and Bolt Dev / Bolt Client access.
bolt start auto-detects Next.js, Nuxt, Vite, Angular, NestJS, tsx/ts-node, and plain Node.js. For SPA output (React, Vue, Angular), use bolt protect-dist after npm run build, then bolt start-spa to serve with integrity verification.
Trusted by Developers

Built for real-world software vendors

From indie developers to ISVs shipping commercial Node.js software worldwide.

500+
Protected projects
10K+
Licenses issued
99.9%
Server uptime
50+
Countries served
★★★★★

"BoltHash solved a real business problem — my Node.js SaaS was leaking to piracy. After deploying bolt protect and device binding, unauthorized copies dropped to zero within a week."

T
Tran M. H.
SaaS developer, Vietnam
★★★★★

"The BGit integration is brilliant. I push updates, my customers pull automatically via Bolt Client. Distribution is now frictionless and I control every install from the dashboard."

A
Alex K.
Independent software vendor, Germany
★★★★☆

"Setup took under 30 minutes for our Electron + Node backend. The Ed25519 signing gives me confidence our manifests can't be forged. Documentation is solid and support is fast."

J
James P.
Technical lead, UK startup
Ed25519 Signed Manifests
TLS 1.3 Encrypted
99.9% Uptime SLA
GDPR Compliant Data
Cancel Anytime
Get Started Today

Start protecting your software today.

Free plan, no credit card. 14-day trial on paid features. Cancel anytime.

Create Free Account View Pricing