# Email Drip: repo-scanner

## Email 1: Hook
**Subject:** Your 837 dependencies—any surprises?

Most engineering teams ship blind on their own dependency graphs. repo-scanner runs a 60-second scan and surfaces the licensed and vulnerable packages buried three levels deep.

No false positives, no theater. Just the risks your security team would spend 3 hours finding manually.

Worth 15 minutes to see what's really in your tree?

---

## Email 2: Problem  
**Subject:** Last time a vuln sat in prod for 6 weeks?

Slow discovery = slow patch = exposed window = audit questions.

repo-scanner catches zero-day propagation before it becomes a headline. Integrates in 5 minutes. Runs on every commit.

Let's talk about your current cadence.

---

## Email 3: Proof  
**Subject:** Compliance audit in 30 minutes instead of 3 days?

We helped a Series-B SaaS team automate their annual SCA audit. Year before: manual spreadsheet, missed 12 transitive vulns. This year: clean report, full license inventory, zero manual labor.

Similar constraints on your side?

---

## Email 4: Social  
**Subject:** The July vuln that hit 14 production systems

One overlooked transitive dependency dragged down Stripe's dependencies last month. Hit 14 platforms before disclosure.

repo-scanner flags those in 4 seconds.

Your turn to be the team that moves fastest.

---

## Email 5: Close  
**Subject:** Free repo scan + 10-min debrief

No pitch, no commitment.

We scan your codebase for 10 minutes, show you your top 3 risks, walk through remediation paths. If it's valuable, we keep talking. If not, you've got a report you can use anywhere.

Worth a coffee break?
