Supply chain attack scanner for PyPI packages — static AST + dynamic sandbox analysis before install Below are 8 security & compliance platforms apps with similar functionality to depsentinel, matched by what each product actually does — not ranked or scored. Explore each to find the closest fit for your use case.
A zero dependency lightweight static analyzer designed for adversarial-shape code in python to detect supply chain attacks before they reach your interpreter.
depenemy is an open-source CLI tool that scans project dependencies to identify security risks in the software supply chain. It supports SBOM and SARIF output formats, helping developers and security teams maintain secure codebases.
Minimal repository scanning CLI.
AI-powered security scanning and autonomous remediation platform
Real-time CLI to detect TeamPCP and other active supply chain attacks in your Python dependencies
Drop your lockfile in, find out if you're pwned. Compromised-package scanner backed by OSV.dev.
devinder-supply-chain-scanner is an open-source command-line tool for scanning supply chain vulnerabilities in projects, systems, and extensions. It performs local analysis and supports SBOM, helping security engineers identify risks in dependencies.
AI model security scanner — scan any HuggingFace model for vulnerabilities, CVEs, misconfigurations, prompt injection, and bias.