Terms of Service
1. Acceptance of Terms
By downloading, installing, or using Dryx ("the App"), you agree to be bound by these Terms of Service ("Terms"). If you do not agree to these Terms, do not use the App.
These Terms constitute a legally binding agreement between you and Dryx AI, Inc., a Utah corporation ("Dryx," "we," "us," or "our"). The App is operated by Dryx AI, Inc.; founder and inventor of record is Matthew Jackson.
We may update these Terms from time to time. Continued use of the App after any changes constitutes acceptance of the revised Terms. We will notify users of material changes through the App or via our website.
2. Description of Service
Dryx is a macOS desktop application that inspects AI agent configurations on your local machine and maps their configuration exposure. The App detects installed AI agents (such as Claude Code, Claude Desktop, Cursor, Codex CLI, Cline, GitHub Copilot, Windsurf, Gemini, and any MCP-capable agent), analyzes their configuration files, and produces an informational report about secrets, permissions, supply chain dependencies, external service connections, and behavioral patterns.
Dryx's flagship capability is the AI Security Triad — a patent-pending architecture in which three independent parties (the user, the deterministic security tool, and the user's AI agent itself) reach consensus before agent actions with security impact occur on the workspace.
Key characteristics of the service:
- Local and offline-first. Inspection and analysis run locally on your Mac. Dryx does not transmit your inspection data, secrets metadata, or behavioral telemetry to any Dryx-controlled server. A small set of explicitly-disclosed network requests exist (Apple StoreKit, optional MCP Registry verification, user-initiated Skill Shield package fetches, user-configured webhook output, license verification for direct downloads). See the Privacy Policy for the complete list.
- Deterministic analysis. Dryx uses rule-based static analysis, not AI or machine learning. Results are reproducible given the same inputs. There is no LLM in the security-analysis path.
- Informational only. Inspection results are informational reports, not professional security audits, certifications, or guarantees. See Section 7 for full warranty disclaimers.
- No user accounts. The App does not require account creation. Licensing is handled via Apple StoreKit (App Store purchases) or license keys (direct download purchases).
- Optional features that write to your files. Some advanced features — Context Shield, Quick Fix actions, Ghost Agent cleanup — require user opt-in and write to files on your machine. These features are off by default and reversible. See the Privacy Policy, Section 5.
- Patent-pending mechanisms. Dryx's core security mechanisms are patent-pending across seven United States provisional filings (April 16, 2026 priority date) — part of eleven total filings; see dryx.ai/patents.
3. Subscriptions & Pricing
3.1 Mac App Store Version (free)
The Mac App Store version of Dryx is free. It provides read-only inspection — the blast-radius graph, A–F posture score, findings, and Skill Shield analyses. It does not include the Authority Anchor MCP, Context Shield, or Action Guard (Observe or Enforce), and it has no paid subscriptions or in-app purchases.
The paid plans (Pro, Team), the Founding Member Lifetime, and the full enforcement experience are available only via direct download from dryx.ai (see Section 3.2). Apple's App Store guidelines (Guideline 2.5.2) do not permit an app to install or execute code that changes the behavior of other apps, which is intrinsic to those features — so they ship exclusively through the notarized direct download.
3.2 Direct Download Purchases (dryx.ai)
Purchases made through dryx.ai are processed by a third-party payment processor. For direct download purchases:
- You receive a license key that activates the App on your machine.
- Subscription billing is managed by the payment processor. You can cancel at any time through your customer portal link or by emailing [email protected].
- Refund requests for direct purchases should be sent to [email protected] within 14 days of purchase. We offer full refunds within this period, no questions asked.
3.3 Pricing
Current pricing (subject to change with notice):
| Plan | Price | Availability |
|---|---|---|
| Free | $0 | App Store (read-only inspect) & direct download |
| Pro (monthly) | $19/month | Direct download |
| Pro (annual) | $149/year | Direct download |
| Team | $39/seat/month | Direct download |
| Founding Lifetime | $349 (one-time) | Direct download only |
| Enterprise | from ~$10,000/year | Direct / contact sales |
Prices are in US dollars. Tax may apply depending on your jurisdiction. We reserve the right to change pricing with 30 days' notice. Price changes do not affect existing subscriptions until the next renewal period.
4. Free Tier vs Pro vs Team
4.1 Free Tier
The Free tier is genuinely useful and available indefinitely (not a trial). It provides:
- The full blast-radius exposure graph across all seven risk layers, at the composite level
- Posture score with A–F grade
- Plain-language findings summaries (per-layer drill-down and step-by-step remediation are Pro)
- Unlimited Skill Shield pre-install analyses
- The Authority Anchor MCP — the local
dryx-authority-anchorserver your AI agents consult before acting (direct-download build) - Action Guard in Observe mode — logs what would have been blocked, without blocking (direct-download build)
- Integrations tab
On the Mac App Store, the Free version is read-only inspection only (graph, posture, findings, Skill Shield); the Authority Anchor MCP and Observe require the direct-download build. We may adjust Free tier features over time but will provide notice before removing functionality.
4.2 Pro
Pro (direct download only) is the complete individual feature set:
- Action Guard Enforce — the deterministic gate moves from Observe (logging would-be holds) to holding flagged agent actions at the harness hook, before they run. Enforce operates on agent harnesses that expose a supported hook seam; supported harnesses are listed in the App and expand over time. Enforce arms only on the direct-download (notarized) build; the Mac App Store version is read-only and provides neither Observe nor Enforce.
- Per-layer drill-down evidence panels across all seven risk layers (Secrets, Permissions, Supply Chain, Egress, Schedule, Prompt Injection, Cross-Agent) plus the composite overlay
- Step-by-step remediation guidance on every finding
- Workspace Drift detection and continuous Monitoring with source attribution
- Context Shield (agent security awareness via instruction-file directives)
- Behavioral baseline — a precomputed exposure input the policy compiles from (it covers more, it does not think more), feeding the risk layers and Drift detection
- Compliance exports (PDF, Markdown, JSON, CSV, CycloneDX AI BoM, Graph PNG)
- Webhook output to your SIEM/SOAR
The Authority Anchor MCP, unlimited Skill Shield, and Action Guard Observe are included in the Free tier (Section 4.1). Each Pro license activates on up to three (3) machines used by the licensed individual.
4.3 Team
Team includes everything in Pro, plus:
- Fleet metadata fields (org_id, team_id, asset_criticality, environment) on findings and webhook payloads, for org-level correlation in your SIEM
- Priority support
- Feature tuning requests
Additional Team capabilities ship progressively and are added to active Team subscriptions at no extra charge. Team pricing is per seat; each seat represents one individual user.
5. Lifetime Deal (Founding Member)
The Founding Member Lifetime Deal is a one-time purchase of $349 that grants a perpetual license to the complete individual feature set (Pro, including Action Guard Enforce). It is available exclusively via direct download from dryx.ai (not through the App Store).
Terms specific to the Lifetime Deal:
- Limited availability. The Lifetime Deal is limited to the first 300 purchasers. Once all 300 licenses are sold, the offer is permanently closed.
- Non-transferable. Lifetime licenses are tied to the purchasing individual and may not be resold, gifted, or transferred to another person or entity.
- Perpetual license + 2 years of feature updates. Lifetime holders receive a perpetual license to the complete individual feature set as of the date of purchase — the blast-radius graph and posture score, all seven risk layers with drill-down and remediation, Workspace Drift, Context Shield, Monitoring, compliance exports, webhook output, unlimited Skill Shield, the Authority Anchor MCP, and Action Guard (Observe and Enforce) — including all feature updates to that set released within two (2) years of purchase.
- License activation. Each Lifetime license activates on up to three (3) machines used by the licensed individual.
- Compatibility & security floor after the update window. After the 2-year update window, the license continues to work and Dryx will maintain a compatibility and security floor — the gate keeps functioning on the agent harnesses and operating-system versions supported as of your last update. New harnesses or OS-breaking changes introduced afterward may require a paid updates extension.
- New product lines are separate. Major new capability planes introduced as separate products or separately priced tiers — including, without limitation, a future deeper operating-system-level enforcement plane, and policy-authoring or fleet-management capabilities introduced as separate tiers — are not included in the Lifetime feature updates and may be offered as separate paid products.
- Single user. Each Lifetime license covers one individual user. It does not include Team-tier features.
- No refund after 14 days. Lifetime Deal purchases are eligible for the same 14-day refund policy as other direct purchases. After 14 days, purchases are final.
- End of life. If Dryx is discontinued, lifetime license holders will receive the final version of the App with no further obligation.
6. Intellectual Property
Dryx — including its source code, user interface designs, graph visualizations, rule definitions, scoring algorithms, behavioral baselining methods, instruction-layer directive injection mechanisms, AI Security Triad consensus architecture, documentation, and branding — is the intellectual property of Dryx AI, Inc. All rights are reserved.
Core Dryx mechanisms are patent-pending across eleven United States provisional filings: seven covering Dryx Authority Anchor architecture (priority date April 16, 2026 — multi-party consensus, dynamic policy directive injection, adversarial request resistance, per-instance behavioral baseline, orphaned configuration detection, pre-deployment blast radius, and multi-layer enforcement), and four prior cybersecurity foundations (priority date November 2025). See dryx.ai/patents for the full breakdown.
Brand assets are protected by federal trademark applications: USPTO Serial #99807971 (DRYX standard character wordmark) and USPTO Serial #99808108 (Triangulation Mark design), both filed May 6, 2026 under Dryx AI, Inc. across IC 009 and IC 042.
Your purchase or download grants you a limited, non-exclusive, non-transferable, revocable license to use the App on macOS devices you own or control, subject to these Terms.
You may not:
- Reverse-engineer, decompile, or disassemble the App, except to the extent permitted by applicable law.
- Redistribute, sublicense, rent, lease, or lend the App or your license key.
- Remove or alter any copyright notices, branding, or proprietary labels in the App.
- Use the Dryx name, logo, AI Security Triad term, or branding in a way that implies endorsement without prior written consent.
- Attempt to recreate or implement the patent-pending mechanisms described above without a separate written license.
Your data is yours. Dryx does not claim any ownership of your configuration files, inspection results, behavioral baselines, exported reports, or any data on your machine. Inspection results and exported reports are your property.
7. Disclaimer of Warranties
Dryx is provided "as is" and "as available" without warranties of any kind, whether express, implied, or statutory.
Specifically:
- Not a security guarantee. Dryx is an informational tool that highlights potential security exposures in AI agent configurations. It does not guarantee that your system is secure, nor does it guarantee detection of all security issues.
- Not a professional audit. Inspection results do not constitute a professional security audit, penetration test, or compliance certification. They should not be treated as such.
- No guarantee of accuracy. While we strive for accuracy, Dryx may produce false positives (flagging items that are not actual risks) or false negatives (missing items that are actual risks). Rule-based analysis has inherent limitations.
- Not legal or compliance advice. Nothing in the App constitutes legal advice. Consult qualified professionals for compliance and legal matters.
- No uptime guarantee. As a locally installed application, Dryx does not depend on cloud services for core functionality. However, we do not guarantee uninterrupted or error-free operation.
We disclaim all implied warranties, including but not limited to implied warranties of merchantability, fitness for a particular purpose, and non-infringement, to the fullest extent permitted by applicable law.
8. Limitation of Liability
To the maximum extent permitted by applicable law:
- Dryx AI, Inc. shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising from your use of or inability to use the App.
- This includes, without limitation, damages for loss of data, loss of profits, business interruption, security breaches, or any failure of the App to detect a security exposure.
- Our total aggregate liability to you for any claims arising from these Terms or your use of the App shall not exceed the amount you paid for the App in the twelve (12) months preceding the claim.
- If you are using the Free tier, our total aggregate liability shall not exceed fifty US dollars ($50).
You acknowledge that Dryx is a tool to assist your decision-making, and you are solely responsible for the security decisions you make based on its output.
9. User Responsibilities
By using Dryx, you agree to:
- Use the App lawfully. You will not use Dryx for any unlawful purpose or to inspect systems you do not own or are not authorized to inspect.
- Make your own security decisions. You understand that inspection results are informational and that you are responsible for evaluating and acting on findings.
- Keep your license key secure. If you have a direct-download license key, you are responsible for keeping it confidential. We are not liable for unauthorized use of your license key.
- Respect system permissions. Dryx requests file access through macOS permission dialogs. You are responsible for understanding which folders you grant access to and for what purposes.
- Understand opt-in features that write to your files. If you enable Context Shield, Quick Fix actions, or Ghost Agent cleanup, Dryx will write to or modify files on your machine to deliver those features. You are responsible for understanding these actions before you opt in. Each action is reversible (Context Shield writes are bounded by markers and removable; Quick Fix and Ghost Agent actions surface their effects before you confirm).
- Operate the webhook responsibly. If you configure a webhook to a SIEM or SOAR endpoint, the endpoint is yours and any data sent to it is governed by your organization's policies, not Dryx's. You are responsible for ensuring the endpoint and the data flow comply with applicable laws (GDPR, HIPAA, internal data-handling policies, etc.).
- Use Skill Shield and Authority Anchor MCP responsibly. Skill Shield fetches packages from URLs you supply; you are responsible for the URLs you analyze. Authority Anchor MCP exposes a local API to AI agents on your machine; you are responsible for which agents you allow to query it.
- Not circumvent licensing. You will not attempt to bypass, disable, or circumvent the App's licensing mechanisms, feature gating, or usage limits.
10. Modifications to Terms
We reserve the right to modify these Terms at any time. When we make changes:
- We will update the "Last updated" date at the top of this page.
- For material changes (changes to pricing, liability, or your rights), we will provide at least 30 days' notice via the App or through our website.
- Continued use of the App after the effective date of changes constitutes your acceptance of the revised Terms.
- If you do not agree to the revised Terms, your remedy is to stop using the App and, if applicable, cancel your subscription.
11. Termination
11.1 By You
You may stop using Dryx at any time. Paid plans are sold via direct download; to cancel a paid subscription, use the customer portal link from your purchase receipt or email [email protected]. (The Mac App Store version is free, so there is nothing to cancel there.)
Cancellation takes effect at the end of the current billing period. You retain access to paid features until that date.
11.2 By Us
We may suspend or terminate your access to the App if you:
- Violate these Terms.
- Attempt to circumvent licensing or feature gating.
- Engage in abusive behavior toward Dryx or its creator.
In the event of termination by us for reasons other than a Terms violation, we will provide a pro-rated refund for any unused portion of a prepaid subscription.
11.3 Effect of Termination
Upon termination, your license to use paid features ends. The Free tier remains available. Your locally stored inspection data is unaffected by license termination -- it remains on your machine under your control.
12. Governing Law
These Terms are governed by and construed in accordance with the laws of the United States. Any disputes arising from these Terms or your use of the App shall be resolved through good-faith negotiation first. If negotiation fails, disputes shall be subject to binding arbitration under commercially reasonable arbitration rules, conducted in the English language.
You agree that any claim or dispute must be brought in your individual capacity, and not as a plaintiff or class member in any purported class or representative proceeding.
13. Contact Information
If you have questions about these Terms, need support, or want to request a refund:
Dryx AI, Inc. (Utah corporation)
Founder & Inventor: Matthew Jackson
Email: [email protected]
Website: dryx.ai
We aim to respond to all inquiries within 2 business days.