Take my money! :) Your service is super-useful for app security. I'm signing up right now. Great idea.<p>My two cents for you: you're far enough along that you can start seeding your market as fast as possible.<p>* How about going to meetups at app dev companies such as Pivotal, Carbon 5, ThoughtWorks, etc.?<p>* How about a free version for open source projects, or students, or nonprofits?<p>Try to make the signup faster and easier.<p>* How about an item on the homepage saying "Upload a Gemfile.lock to see if it's secure"? I would personally do this first because it's fast, easy, and needs no setup.<p>* How about an item on the homepage asking "What's your GitHub username?" then skim for vulnerabilities? I would personally do this because I write many open source gems.
This is a really useful service for what we call "version tracking," and it looks like it's running Brakeman for you too. With that said, it won't find vulnerabilities you code in yourself - only publicly released vulns that Ruby, etc. have issued patches for. A tool like <a href="https://www.tinfoilsecurity.com" rel="nofollow">https://www.tinfoilsecurity.com</a> can help you find more vulnerabilities that either a) haven't been found yet publicly or b) you've written in yourself. (Disclosure: I'm the cofounder)