Last updated: February 2025
When you sign up, we collect your GitHub username and repository metadata for both public and private repos (repo names, descriptions, commit counts, commit messages, last commit dates, languages used, and README files). We do not read, store, or access your source code. Ever. We only look at metadata, commit messages, and READMEs — never the actual code files.
Your repository metadata is sent to our AI (Google Gemini) to generate your roast report — scores, verdicts, and recommendations. We store your roast reports so you can revisit them. We don't sell your data, share it with third parties, or use it for anything other than roasting you. Your GitHub access token is stored securely to fetch your repos on your behalf.
Payments are processed through a third-party payment provider. We never see or store your full card details. The payment provider handles all sensitive financial data.
We use essential cookies to keep you logged in. No tracking cookies, no analytics cookies, no creepy stuff. We're here to roast your repos, not stalk you.
Want your data gone? Email us at hi@shiproast.dev and we'll delete everything within 48 hours. No guilt trip.
Questions? Concerns? Existential dread about your abandoned repos? hi@shiproast.dev