Pricing and Limits
Mayo ASPM offers three tiers to match organizations of different sizes and needs.
Plan comparison
| Feature |
Free |
Pro |
Enterprise |
| Price |
$0 / month |
$49 / month |
Custom |
| Assets (repositories) |
Up to 5 |
Up to 50 |
Unlimited |
| Users |
Up to 3 |
Up to 25 |
Unlimited |
| Teams |
1 |
Up to 10 |
Unlimited |
| Projects |
Up to 3 |
Up to 25 |
Unlimited |
| Sub-projects |
Not available |
Up to 10 per project |
Up to 50 per project |
Scanning limits
| Feature |
Free |
Pro |
Enterprise |
| Scans per month |
50 |
500 |
Unlimited |
| Concurrent scans |
1 |
5 |
20 |
| Scan timeout |
10 minutes |
15 minutes |
30 minutes |
| PR scans per month |
100 |
1,000 |
Unlimited |
| Max repository size |
1 GB |
3 GB |
5 GB+ (custom) |
Policy limits
| Feature |
Free |
Pro |
Enterprise |
| Policies |
Up to 5 |
Up to 50 |
Unlimited |
| Policy kinds |
Triage only |
All 5 kinds |
All 5 kinds |
| Policy versions retained |
Last 5 |
Last 50 |
Unlimited |
| Playground evaluations per day |
100 |
1,000 |
Unlimited |
Integration limits
| Feature |
Free |
Pro |
Enterprise |
| GitHub organizations |
1 |
1 |
Multiple |
| Jira connection |
Not available |
1 instance |
Multiple instances |
| API keys |
2 |
10 |
Unlimited |
| Airflow DAGs |
Not available |
Supported |
Supported |
API rate limits
| Feature |
Free |
Pro |
Enterprise |
| Requests per minute |
60 |
300 |
1,000 |
| Requests per hour |
1,000 |
10,000 |
50,000 |
| Scan triggers per hour |
10 |
50 |
200 |
See Rate limits for detailed rate limit information.
Data retention
| Feature |
Free |
Pro |
Enterprise |
| Finding history |
30 days |
1 year |
Unlimited |
| Scan history |
30 days |
1 year |
Unlimited |
| Audit log |
7 days |
90 days |
1 year+ |
| Policy version history |
Last 5 versions |
Last 50 versions |
Unlimited |
Feature availability
| Feature |
Free |
Pro |
Enterprise |
| SCA scanning (Grype) |
Yes |
Yes |
Yes |
| SAST scanning (Semgrep) |
Yes |
Yes |
Yes |
| Secret scanning (Gitleaks) |
Yes |
Yes |
Yes |
| Container scanning (Trivy) |
No |
Yes |
Yes |
| PR scanning |
Yes (limited) |
Yes |
Yes |
| OPA triage policies |
Yes (5 max) |
Yes |
Yes |
| Priority policies |
No |
Yes |
Yes |
| Ownership policies |
No |
Yes |
Yes |
| Project policies |
No |
Yes |
Yes |
| PR scan policies |
No |
Yes |
Yes |
| Jira integration |
No |
Yes |
Yes |
| Bi-directional Jira sync |
No |
Yes |
Yes |
| Custom field mapping |
No |
No |
Yes |
| Airflow integration |
No |
Yes |
Yes |
| SSO / SAML |
No |
No |
Yes |
| Custom scanner timeout |
No |
No |
Yes |
| Dedicated support |
No |
Email |
Dedicated CSM |
| SLA |
Best effort |
99.5% uptime |
99.9% uptime |
Frequently asked questions
Can I try Pro features before upgrading?
Yes. All new accounts get a 14-day Pro trial. No credit card required.
What happens when I exceed a limit?
- Asset limit: You can't add new repositories but existing ones keep scanning.
- Scan limit: Scan triggers are rejected until the next month. Scheduled scans are queued.
- API rate limit: Requests return
429 Too Many Requests with a Retry-After header.
Can I downgrade?
Yes. Downgrading takes effect at the end of the current billing period. Assets and policies above the new tier's limits become read-only.
Is there annual billing?
Yes. Annual billing on the Pro tier provides a 20% discount ($470/year instead of $588/year).
How does Enterprise pricing work?
Enterprise pricing is based on organization size (number of assets and users). Contact sales@mayoaspm.com for a quote.
Next steps