Open Source
Built in the Open
Our client SDK is MIT-licensed. You can read every line that runs in your users' browsers. Transparency is not a feature — it's how we build.
Our Open Source Philosophy
We believe that security software must be transparent to be trusted. Three pillars guide how we build.
Transparency
Our client SDK source code is public. You can read every line that runs in your users' browsers. No obfuscated blobs, no hidden network calls, no surprises.
Auditability
Security teams can audit the exact signals we collect, the data we send, and the endpoints we contact. Compliance reviews take hours, not weeks.
Community
Bug reports, feature requests, and pull requests from the community make our SDK better. We review every contribution and ship community fixes within days.
Community Numbers
What's Open Source
MIT License — use it however you want
Client SDK
Full source for the JavaScript agent that collects device signals. TypeScript, zero dependencies, MIT license.
Documentation
API reference, integration guides, and architecture docs are all open source and accept contributions.
Signal Collection
Every signal we collect is documented with its purpose, uniqueness score, and stability characteristics.
What's Proprietary
Our server-side competitive advantage
AI Engine
Our advanced matching and identification algorithm algorithms that achieve 99.5% accuracy. This is our core IP.
Server Processing
Backend infrastructure for real-time signal processing, scoring, and visitor identification at scale.
Infrastructure
Multi-region deployment, ClickHouse analytics, Kafka streaming, and our anti-tampering detection layer.
Start Contributing
Found a bug? Want to add a signal? Our contributor guide covers everything from local setup to submitting your first PR.