Use the repository service that hosts the client project you want to secure.
Credentials are verified against the server, encrypted with AES-256-GCM, and only ever used by the scan worker. Scanning SVN repositories requires the Subversion CLI on the worker.