Service
An independent audit from a senior engineer who reads your actual code.
Security vulnerabilities, performance bottlenecks, architecture time-bombs, and tech debt that's costing you velocity — found, prioritised, and documented with a clear action plan. Reports in 3–10 business days.
Packages
Most clients start with a Full Audit. If you know exactly where to look, the Focused Audit gets there faster.
£1,500
3–5 business days
A deep dive into one specific area. Pick security, performance, architecture, or code quality. You get a 10–15 page report with prioritised findings, root causes, and an action plan. The fastest way to get an expert second opinion.
Includes
Best for
Teams who know roughly where the problem is but need an expert to confirm and prioritise.
£3,000
5–7 business days
A comprehensive review across all dimensions: security, performance, architecture, code quality, infrastructure, and CI/CD. Full report with risk matrix, tech debt inventory, and a 90-day remediation roadmap.
Includes
Best for
Companies preparing for fundraising, onboarding a new CTO, or inheriting an unknown codebase.
£6,000
7–10 business days
Everything in the Full Audit, plus two days of hands-on remediation immediately after delivery. We fix the critical issues ourselves while the context is fresh. The fastest path from identifying problems to having them solved.
Includes
Best for
Teams who want problems identified and immediately fixed, not just documented.
Scope
Five areas, weighted by their typical impact on production software. Every finding is rated by severity, effort to fix, and business impact.
When to audit
Investors will run technical due diligence. An audit lets you find and fix critical issues before they're discovered in a process — and gives you a credible technical health report to share proactively.
New CTO, new agency, acquisition, or inheriting a legacy system. An audit maps the minefield before you commit to a timeline or budget.
If users are complaining about speed, or your Lighthouse scores are in the red zone, a focused performance audit identifies the highest-impact fixes in order of effort.
You're approaching significant growth. An architecture audit tells you what breaks at 10x and what architectural changes you need before you need them.
Understanding the full blast radius and fixing root causes — not just the immediate vector — requires a systematic security review by someone outside the team.
A written audit report is the fastest way to get a new team aligned on the state of the codebase — what's solid, what's fragile, and what to tackle first.
Deliverable
Executive Summary
Overall health rating (Green/Amber/Red), top 5 risks in plain English, estimated cost of inaction. Suitable for sharing with investors or board.
Risk Matrix
Every finding rated by severity (Critical/High/Medium/Low), likelihood, business impact, and estimated cost to remediate.
Technical Detail
Per-area findings with code references, root cause analysis, and recommended fixes. Includes automated scan outputs as appendices.
90-Day Action Roadmap
Prioritised list of recommendations grouped by urgency: this week, this month, this quarter. With effort estimates so you can plan.
Remediation Cost Estimates
Rough effort estimates for each issue — so you can triage by ROI, not just severity.
Walkthrough Call
60-minute call to walk through findings, answer questions, and help you decide what to tackle first.
FAQ
A technical audit is the fastest way to move from “something feels off” to a prioritised action plan with evidence behind it.