Scan requirements.txt, package.json and Cargo.toml for outdated packages and known CVEs Below are 7 security & compliance platforms apps with similar functionality to pkgscan, matched by what each product actually does — not ranked or scored. Explore each to find the closest fit for your use case.
Diff-aware security scanning with multi-tool orchestration, deterministic SARIF, and PR-comment rendering.
Real-time CLI to detect TeamPCP and other active supply chain attacks in your Python dependencies
pyvulscan is an open-source command-line tool that scans Python project dependencies for known vulnerabilities using the OSV API. It helps developers and security engineers identify and address security risks in their codebases.
BasiliskScan is an open-source CLI tool that scans software projects to identify vulnerable or outdated dependencies. It helps developers and security engineers maintain secure and up-to-date codebases by providing detailed analysis reports.
A CLI tool that scans your codebases for security vulnerabilities powered by powerful AI models.
Template-driven package recipe updater powered by nvchecker
Drop your lockfile in, find out if you're pwned. Compromised-package scanner backed by OSV.dev.