New
We have updated our Terms of Service. Review.

Plans & Pricing

Always-on protection. Unlimited applications, scans and lines of code.

REQUEST A DEMO
I need up to 0 developers
Developers, or “active contributors” are individuals who contribute to the developments of your application, at least once, in any 90-days window.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Basic

$0

/month
Up to 0 Developers
Developers, or “active contributors” are individuals who contribute to the developments of your application, at least once, in any 90-days window.
BILLED ANNUALLY
For teams looking to add secure development to their Salesforce SDLC.
Includes:
Vulnerability scanning
Automatically find code vulnerabilities in your Salesforce applications, including OWASP Top 10, CRUD/FLS violations and more.
Dependency scanning
Automatically find known vulnerabilities for any dependencies embedded by you in your Salesforce applications, via CDN or static resources.
Unlimited users
Allow unlimited authorised users to access your Clayton account and launch scans, view reports, and gain insights.
Unlimited repositories
Use Clayton with any number of git repositories.
Unlimited lines of code
Scan freely, without lines of code or code size limits.
1000 scan mins/week
Fair use limits, allowed scan minutes on every 7-day rolling window.
Standard

$0

/month
Up to 0 Developers
Developers, or “active contributors” are individuals who contribute to the developments of your application, at least once, in any 90-days window.
BILLED ANNUALLY
For teams looking to add secure development and continuous best practice checks to their Salesforce SDLC.
Includes Basic, Plus:
Robust testing
Find untested code and drive best practices to reduce bugs and facilitate continuous changes.
LDV optimisations
Find governor limits and bottlenecks and optimiseyour applications to scale comfortably to large data volumes.
Dead code
Find unused code, and other elements that clutter your applications and are no longer required.
Org scanner
Scan applications securely from all Salesforce orgs and sandboxes.
Multiple parallel scans
Possibility to launch multiple scans at any given time.
2000 scan mins/week
Fair use limits, allowed scan minutes on every 7-day rolling window.
Pro

$0

/month
Up to 0 Developers
Developers, or “active contributors” are individuals who contribute to the developments of your application, at least once, in any 90-days window.
BILLED ANNUALLY
For experts looking for secure development and the ability to build on Salesforce to their individual technical standards.
Includes Standard, Plus:
Custom policies
Create multiple policies and customise Clayton’s code scanning to fit your technical standards.
Custom rules
Create your own rule to make a detailed check of any type of code and metadata, and let Clayton take care of repetitive code review tasks.
Single sign-on
Log in using your preferred SAML-based Single Sign-On solutions, such as Okta, OneLogin, and more.
3000 scan mins/week
Fair use limits, allowed scan minutes on every 7-day rolling window.
Enterprise
For larger organizations aiming for enterprise-wide standardisation of their Salesforce developments.
Includes Pro, Plus:
On-prem source repositories
Integrate Clayton with your on-prem or self-hosted source code repositories (GitHub Enterprise, GitLab, Bitbucket Server, Azure DevOps Server).
Multiple source providers
Use Clayton with more than one source provider at a time.
Bespoke terms
Possibility to amend our terms to comply with your company’s legal requirements.
Ad-hoc limits
Work with bespoke limits and tailor usage caps to your budget.
SLAs
Service Levels Agreement.
Premium support
Dedicated account manager, 1:1 calls with screen sharing for all your authorised users.
request a demo

Feature Comparison

Basic
Standard
Pro
Enterprise
Features
End-to-end code encryption
TLS 1.2+ encryption in transit and SHA-256 encryption at rest for all source code processing.
Vulnerability scanning
Automatically find code vulnerabilities in your Salesforce applications, such asincluding OWASP Top 10, CRUD/FLS violations and more.
Dependency scanning
Automatically find known vulnerabilities for any dependencies you embeded in your Salesforce applications, via CDN or static resources.
Robust testing
Find untested code and drive best practices to reduce bugs and facilitate continuous changes.
-
LDV optimisations
Find governor limits and bottlenecks and optimise your applications to scale comfortably to large data volumes.
-
Dead code
Find unused code, and other redundant elements that are cluttering up your applications.
-
Error resilience
Find non-deterministic behaviour and incorrect use of transaction control, and optimise the stability and robustness of your Salesforce application.
-
Custom policies
Create multiple policies and customise Clayton’s code scanning to fit your technical standards.
-
-
Custom rules
Create your own rule to make a detailed check of any type of code and metadata, and let Clayton take care of repetitive code review tasks.
-
-
Up to 5
Unlimited
Limits
Repositories
Number of git repositories you can monitor and scan with Clayton.
Unlimited
Unlimited
Unlimited
Unlimited
Lines of code
Lines of code and code size allowance per application.
Unlimited
Unlimited
Unlimited
Unlimited
Authorised users
The number of users with access to your Clayton workspace, with the ability to launch scans, view reports, and gain insights.
Unlimited
Unlimited
Unlimited
Unlimited
Parallelisation
The number of scans you can run in parallel at any given time.
2
5
10
20
Tracked branches
The number of branches that Clayton can automatically monitor for you, per repository.
1
3
5
10
Reporting and Governance
Scan reports
View your scan results online, with easy to read, searchable reports.
False positives reports
Track false positives and keep an auditable log of who dismissed them and why.
Users audit log
Report on user activities in your Clayton account.
-
-
Repository insights
Access quick reports on what’s being fixed and problems being introduced by your team.
Compliance reports
Centralised reports on compliance and adherence to standards across all your developments and teams.
-
-
Training gap report
Identify any skills gaps.
-
-
Sources and Integrations
Cloud source code repositories
Integrate Clayton with your cloud source code repositories (GitHub, GitLab, Bitbucket, Azure DevOps).
On-prem source code repositories
Integrate Clayton with your on-prem or self-hosted source code repositories (GitHub Enterprise, GitLab, Bitbucket Server, Azure DevOps Server).
-
-
-
Multiple source providers
Use Clayton with more than one source provider at a time.
-
-
-
Salesforce Org scanner
Scan applications securely from all Salesforce orgs and sandboxes.
-
Slack
Read and respond to your notifications directly from Slack.
ThreadFix
Consolidate results across applications and manage vulnerabilities centrally using ThreadFix.
-
-
-
Copado
Integrate Clayton’s powerful scanning into Copado’s native DevOps suite for Salesforce.
-
-
-
Single sign-on
Log in using your preferred SAML-based Single Sign-On solutions, such as Okta, OneLogin, and more.
-
-
Support
24/7 online documentation
Free unlimited access to our online documentation.
Community access
Access our customer community, get support and share ideas.
Email support
Get support via email.
1:1 calls
Get support via Zoom, with 1:1 and screen sharing sessions.
-
-
Guaranteed 1-business day guaranteed response
Get all your cases responded to within one business day.
-
-
-
Dedicated account manager
An account manager dedicated to your account, to provide regular check-ins and proactive assistance.
-
-
-

Build like ecosystem leaders

More than 1 billion lines of code scanned and 1,031 security fixes, every day.

Frequently Asked Questions

What is an ‘authorised user’?
An ‘authorised user’ is anyone who can access Clayton as a user, with the permission to launch scans and view reports, etc.
Can I scan without limits?
We apply ‘fair usage’ limitations to make sure our computing resources are used fairly, but other than that we give you the freedom to scan anything you want, as often as you want.
What counts as a ‘developer’?
By ‘developer’ we mean “active contributor” i.e. any individual who has contributed at least once in the last 90 days, to the development of any application being scanned by Clayton.
Can I host Clayton on-prem?
At Clayton we’re passionate about the cloud - so we don’t plan to offer an internally hosted version.
How secure is Clayton?
Protecting your source code is our number one priority. We use physical, procedural, and technical safeguards to preserve the confidentiality of your code. This includes end-to-end encryption of data which is hosted in secure SOC2 certified data centers.  In addition, we work with third-party auditors to ensure our practices are secure. Learn more.
Do you have a refund policy?
We do not offer refunds. If you cancel your plan before the next renewal cycle, you will retain access to paid features until the end of your subscription period. When your subscription expires, you will lose access to paid features and all data associated with those features.
Do you offer 24/7 support?
We currently only offer support during UK office hours.

See Clayton in action.

Discover how to secure your developments, stop technical debt, and start building faster on Salesforce.
Request a Demo