I wanted to snap up this offer but the stopping point I keep hitting is the focus on Github as the sole repository service. As you know Github's had a lot of problems of late and I'm part of the growing collection of devs who have left the service. So I wonder if - or better, when - other git-based services will be added as alternatives to Github?
Q: I bought tier one and would like to upgrade to tier 2
Do i just buy another tier 1 code and stack it? I am reluctant to do that because tier 2 is more than 2x the cost of tier1. Let me know how to proceed.
Greetings I see a number of scans in the description, but I guess it's repo scans. what about web scans? how many pages can I scan each month? Thanks in advance Regards greg
Hi team! We're evaluating Tier 3 for an Nx monorepo containing a React PWA and .NET Azure Function apps. Before purchasing, could you clarify:
Monorepo Scans: Can Rafter target specific sub-directories on PRs, or does every commit trigger a full repo audit?
.NET 10 Depth: Many tools offer only surface-level C# support. How deep is your AST/semantic analysis for standard .NET 10 Isolated...
Founder Team
Rome_Rafter
Jun 11, 2026
A: Thanks for the detailed questions.
1. Monorepo scans — sub-directory targeting on PRs
Today, a scan audits the whole repository, not just the changed sub-directory. We clone the target branch and run the analyzers across the full tree; there is no diff-scoped / changed-files-only "PR mode" yet. You can suppress findings by path with an exclude_paths / per-path ignore config (.rafter.yml),...
Hi Rome, thanks for these detailed answers! We have proceeded with Tier 3.
For now, we're hoping to adopt a hybrid pipeline - Semgrep on PRs and Rafter Fast Scans in our merge queue.
We would ideally like to consolidate entirely onto Rafter. I see "Custom Rules" is on your roadmap (inferred from your blog posts). Can you share any rough timeline or priority level for this feature?
Q: Hi, May I know about warnings on the fast scan report
I tried to do fast scan the first time via github and then I got the report critical 1 warning 15 , improvement 4 , I prompted this to Antigravity and it fixed the issues except the warning 15, it keeps getting warning on fast scan reports straight for 5 attempted scans , I prompted all the warning prompts to antigravity but I am always getting false positive vulnerability, now I still have warning 16, it never goes away. will I leave it like this, how to solve this, I use that 3.1 gemini pro high, Thanks
Founder Team
Rome_Rafter
Jun 10, 2026
A: Good question! We're constantly tuning our scanner to minimize false positives (your extra 15 warnings) rather than letting false negatives (real, missed vulns) slip by. Because you've done a few passes, there's good reason to think that's what those are: false positives, and nothing to worry about. You can ignore them, or...
To get your agent to start ignoring the problem, point it at...
Q: Local or non-Github repos?
Hi,
I wanted to snap up this offer but the stopping point I keep hitting is the focus on Github as the sole repository service. As you know Github's had a lot of problems of late and I'm part of the growing collection of devs who have left the service. So I wonder if - or better, when - other git-based services will be added as alternatives to Github?
But I think I also read something about...
Share Rafter
Verified purchaser
I'm interested in that too, since I'm using forgejo locally, and just realized I need to autheticate myself using github.
Q: I bought tier one and would like to upgrade to tier 2
Do i just buy another tier 1 code and stack it? I am reluctant to do that because tier 2 is more than 2x the cost of tier1. Let me know how to proceed.
Share Rafter
Q: Number of website scans?
Greetings
I see a number of scans in the description, but I guess it's repo scans. what about web scans? how many pages can I scan each month?
Thanks in advance
Regards
greg
Share Rafter
Verified purchaser
Also: if I archive a site, does it still counts in my allowance?
Q: Monorepos, .NET 10, MCP Privacy & Quotas
Hi team! We're evaluating Tier 3 for an Nx monorepo containing a React PWA and .NET Azure Function apps. Before purchasing, could you clarify:
Monorepo Scans: Can Rafter target specific sub-directories on PRs, or does every commit trigger a full repo audit?
.NET 10 Depth: Many tools offer only surface-level C# support. How deep is your AST/semantic analysis for standard .NET 10 Isolated...
Rome_Rafter
Jun 11, 2026A: Thanks for the detailed questions.
1. Monorepo scans — sub-directory targeting on PRs
Today, a scan audits the whole repository, not just the changed sub-directory. We clone the target branch and run the analyzers across the full tree; there is no diff-scoped / changed-files-only "PR mode" yet. You can suppress findings by path with an exclude_paths / per-path ignore config (.rafter.yml),...
Share Rafter
Verified purchaser
Hi Rome, thanks for these detailed answers! We have proceeded with Tier 3.
For now, we're hoping to adopt a hybrid pipeline - Semgrep on PRs and Rafter Fast Scans in our merge queue.
We would ideally like to consolidate entirely onto Rafter. I see "Custom Rules" is on your roadmap (inferred from your blog posts). Can you share any rough timeline or priority level for this feature?
Q: Hi, May I know about warnings on the fast scan report
I tried to do fast scan the first time via github and then I got the report critical 1 warning 15 , improvement 4 , I prompted this to Antigravity and it fixed the issues except the warning 15, it keeps getting warning on fast scan reports straight for 5 attempted scans , I prompted all the warning prompts to antigravity but I am always getting false positive vulnerability, now I still have warning 16, it never goes away. will I leave it like this, how to solve this, I use that 3.1 gemini pro high, Thanks
Rome_Rafter
Jun 10, 2026A: Good question! We're constantly tuning our scanner to minimize false positives (your extra 15 warnings) rather than letting false negatives (real, missed vulns) slip by. Because you've done a few passes, there's good reason to think that's what those are: false positives, and nothing to worry about. You can ignore them, or...
To get your agent to start ignoring the problem, point it at...
Share Rafter