Pruva PRUVA

Terms of Service

Last updated: February 2026

1. Acceptance of Terms

By accessing or using Pruva ("the Service"), you agree to be bound by these Terms of Service. If you do not agree, do not use the Service.

2. Description of Service

Pruva is an automated platform that ingests publicly available security advisories and attempts to reproduce reported vulnerabilities in sandboxed environments. The Service publishes reproduction results, analysis, and scripts for informational and research purposes.

Reproduction identifiers (REPRO IDs) are permanent, citable references to reproduction attempts.

3. No Warranty — Content Provided "As Is"

All content on this Service — including reproduction results, root cause analyses, scripts, and vulnerability assessments — is generated by automated systems and provided "as is" without warranty of any kind, express or implied.

Pruva makes no representations or guarantees regarding:

  • The accuracy, completeness, or reliability of any reproduction or analysis
  • Whether any vulnerability described is exploitable in any particular environment
  • The correctness of severity assessments, CVSS scores, or affected version ranges
  • The safety or fitness of any published script for any purpose

You are solely responsible for independently verifying any information obtained through the Service before acting on it.

4. Limitation of Liability

To the maximum extent permitted by applicable law, Pruva, its operators, contributors, and affiliates shall not be liable for any direct, indirect, incidental, special, consequential, or punitive damages arising from or related to:

  • Your use of or reliance on any content published by the Service
  • Running, adapting, or distributing reproduction scripts
  • Security decisions made based on reproduction results
  • Any errors, omissions, or inaccuracies in automated analysis
  • Service availability, interruptions, or data loss

You use the Service entirely at your own risk.

5. Security Research Disclaimer

Reproduction scripts demonstrate real security vulnerabilities. They are provided strictly for defensive security research, education, and verification purposes.

You are solely responsible for ensuring that your use of any reproduction material complies with all applicable laws and regulations. Running reproduction scripts against systems you do not own or have explicit authorization to test may be illegal.

Always execute reproduction scripts in isolated, disposable environments (VMs, containers, or sandboxes).

6. Acceptable Use

You may not:

  • Use reproduction scripts to attack systems without authorization
  • Attempt to disrupt or overwhelm the Service infrastructure
  • Scrape the Service at a rate that degrades performance for others
  • Misrepresent automated analysis as human expert assessment

7. Third-Party Content

The Service references vulnerability data from third-party sources (GitHub Security Advisories, NVD, vendor advisories). Pruva does not control or endorse these sources and is not responsible for their accuracy.

8. API Usage

The Pruva API is available for programmatic access subject to rate limits. Excessive usage may result in access restrictions. API keys are non-transferable.

9. Indemnification

You agree to indemnify and hold harmless Pruva and its operators from any claims, damages, or expenses arising from your use of the Service, including any misuse of reproduction content.

10. Changes to Terms

We may update these Terms at any time. Continued use of the Service after changes constitutes acceptance of the updated Terms.

11. Contact

For questions about these Terms, open an issue on the Pruva GitHub repository.