Which plan do you need?

We'll protect you
the right way

Every situation is different. Tell us where you are - we'll show you exactly what BoltHash does for you and what you gain.

I'm building a side project or learning
You want your code to run only on a few personal machines. No reselling, no teams - just basic protection and integrity checking.
Free plan
? Up to 3 projects - 3 devices - 5 keys
I sell a tool or CLI to a small audience
You charge for your software. You need per-customer keys, machine locking, and expiry - so each license is tied to the device that paid for it.
Starter plan
? 10 projects - 10 keys/project - per-IP locking
I run a SaaS or multi-customer product
Multiple customers, multiple products. License enforcement across your entire catalogue plus a CI/CD pipeline that signs every build automatically.
Professional plan
? Unlimited projects - CICD signing - 25 devices/key
I need air-gapped, on-prem or white-label
Your software is deployed inside secure networks, sold through resellers, or must meet strict compliance. Full control - self-hosted, custom domains, priority support.
Enterprise plan
? On-premise - Unlimited everything - SLA
My team ships multiple internal tools
You need a single licence server for your whole engineering team. Centralised key management, audit logs, and automated signing in your deployment pipeline.
Professional plan
? Team keys - CI/CD git storage - audit logs
I distribute to regulated or high-risk clients
Your customers are banks, hospitals, or government bodies. You need cryptographic proof of integrity, offline enforcement, and compliance audit trails.
Enterprise plan
? Compliance logs - custom SLA - priority support
How BoltHash protects you

Three layers of protection.
Depth depends on your plan.

Every plan gets a baseline. Higher plans go deeper - more control, more cryptography, more enforcement.

License key enforcement
Your software refuses to run without a valid key issued by you.
Free
Global key validation - up to 3 projects, 5 keys each.
Starter
Per-customer keys with IP locking and expiry dates.
Professional
All of Starter + device fingerprinting (25 devices/key), offline grace, run-count throttling.
Enterprise
Unlimited + white-label key issuing, hardware binding, compliance export.
Code integrity hashing
Cryptographic proof that no file was altered since you released it.
Free
SHA-256 manifest verification at startup. Detects tampered files.
Starter
Automatic exit on tamper detection. Self-check guard cannot be easily stripped.
Professional
All files signed per release. HMAC signature - forgery requires your private key.
Enterprise
Ed25519 signing + timestamped notarisation. Immutable audit trail per build.
CI/CD pipeline guard
Every build is signed automatically - no manual steps, no human error.
Free / Starter
Manual signing via CLI. Run bolt sign before each release.
Professional
BoltGit + CI/CD runner. Auto-signs on push. 500 MB git storage, 500 builds/mo.
Enterprise
Unlimited builds, self-hosted runner, custom signing keys in your own KMS.
What you gain

Real outcomes per plan

Choose a plan to see exactly what changes for you - outcomes, not a features list.

Free - $0/mo forever

Learn, experiment,
protect your first project

You're not paying anything. You still get real tamper detection, startup integrity checks, and license key infrastructure - enough to secure a personal tool or prove the concept.
??
Your code won't run if tamperedSHA-256 manifest is checked at startup. Files modified after packaging are detected immediately.
??
Only people with your key can run itIssue keys via the dashboard. Revoke instantly if a key is shared or leaked.
?
Setup in under 5 minutesnpm i -g @realboltopen/bolt-hash and one config call. No server infrastructure needed.
Start for free Read the docs

Plan specifications

Projects1
Keys per project2
Devices per key1
IP lockingnot included
Integrity hashing? SHA-256
Auto tamper exitnot included
CI/CD signingmanual CLI only
License API calls / mo10,000
SupportCommunity
Starter - from $10/mo

Sell your first product
with confidence

You're charging real money. Starter gives you per-customer keys, machine locking, and expiry - so you can revoke any license instantly and ensure no key is shared between buyers.
??
Stop license sharing deadEach key is bound to a specific IP. If a customer shares their key, it won't work anywhere else.
??
Enforce subscription expirySet keys to expire with billing. When a customer cancels, their software stops working on renewal day.
??
Instant revocationOne click in the dashboard revokes any key globally. No patches, no emails to customers.
Start with Starter See full pricing

Plan specifications

Projects1
Keys per project5
Devices per key1
IP locking? included
Key expiry? included
Auto tamper exit? blocks on tamper
CI/CD signingmanual CLI only
License API calls / mo50,000
SupportEmail
Professional - from $29/mo

Ship products that sign
themselves on every release

Professional closes every gap - CI/CD auto-signing, offline enforcement so keys work without internet, and the BoltGit runner to sign every push automatically.
??
Zero-touch release pipelinePush to git → BoltGit signs the build → customers get a signed artifact. No manual step needed.
??
Offline grace periodYour customers keep working during outages. Keys validate offline for up to 72 hours before re-checking.
??
Audit trail for every activationSee every device, every validation, every key event in a searchable log.
Start Professional See full pricing

Plan specifications

Projects10
Keys per project50
Devices per key5
IP locking + offline grace? 72h grace
Run-count throttling? included
CI/CD signing? BoltGit runner
Git storage5 GB
Builds / month50
SupportPriority email
Enterprise - custom pricing

Full control, your infra,
your compliance

Deploy BoltHash inside your own network. Self-hosted server, your own signing keys in your own KMS, white-label customer portal, and an SLA that matches your uptime commitments.
??
Runs in your datacenterDeploy behind your firewall. No data leaves your network. Air-gapped deployments supported.
??
Compliance-grade audit logsImmutable, timestamped records of every signing event, activation, and revocation - exportable for SOC2, ISO 27001.
??
Dedicated support + SLANamed support engineer. 4-hour response SLA. Onboarding call and migration help included.
Talk to sales Enterprise docs

Plan specifications

ProjectsUnlimited
Devices per keyUnlimited
Self-hosted option? included
Custom signing keys (KMS)? included
White-label portal? included
Builds / monthUnlimited
Compliance export? SOC2 / ISO 27001
SLA4h response
SupportDedicated engineer
Full comparison

Every feature, side by side

All limits shown are per month unless noted.

Feature Free Starter Professional Enterprise
Licensing
Projects1110200
Keys per project25502,000
Devices per key115Unlimited
IP locking-???
Key expiry-???
Run-count throttling--??
Offline grace period--72 hoursCustom
Integrity & Signing
SHA-256 manifest check????
Auto tamper exit-???
HMAC signed manifest--??
Ed25519 / custom KMS keys---?
CI/CD Pipeline
Manual CLI signing????
BoltGit runner (auto sign)--??
Git storage-500 MB5 GB50 GB
Builds / month-550Unlimited
Infrastructure
Hosted API????
Self-hosted server---?
White-label portal---?
License API calls / mo10k50k500kUnlimited
Support & Compliance
Community support????
Email support-?PriorityDedicated
SLA / response time---4 hours
Audit logs export--?SOC2 / ISO27001
Honest limitations

Things you should know

⚠️
BoltHash is not obfuscationWe don't transform or encrypt your source code. A determined attacker with full source access could strip out the license check. What we guarantee: a valid key must be presented on every run, and tampering with files will be detected.
??
Validation requires internet - except on Professional+Free and Starter plans check the license server on every run. If your customers run in locked-down environments, upgrade to Professional for the 72-hour offline grace period, or Enterprise for a fully self-hosted server.
??
Node.js / npm packages onlyBoltHash protects Node.js-based software. Python, Go, Rust, and binary tools are not currently supported. We plan native CLI support in 2025 - join the waitlist on the free plan.
??
You can upgrade (or cancel) any timePlans are billed monthly. Upgrade mid-cycle and pay the prorated difference. Cancel any time - your software continues to work until end of the billing period.

Ready to protect your software?

Start free - no credit card, no time limit. Upgrade when your use case grows.

Start for free See pricing

Free plan is free forever - No credit card needed - Upgrade anytime