See Every Dependency. Catch Every Vulnerability.
DepRadar maps the full dependency graph of every repository and branch, then monitors it around the clock — catching vulnerabilities across your direct and transitive dependencies. Real-time alerts, rich dashboards, one CLI command. No source code access, ever.
From one command to complete visibility
Run npx depradar scan in your pipeline and your entire dependency graph — every vulnerability, direct or transitive — lands in your dashboard.
storefront / main
Monitored for vulnerabilitiesLast snapshot: 2 minutes ago
Dependencies
48
Runtime dependencies
Dev Dependencies
12
Development only packages
Critical Vulnerabilities
1
Requires immediate attention
Total Vulnerabilities
3
1 critical · 2 moderate
Dependency graph
Resolved graph for this snapshot
Vulnerabilities
3 open
View full report →
Everything You Need to Secure Your Software Supply Chain
From vulnerability detection deep in your dependency tree to the dashboards that make sense of it all — DepRadar covers the whole lifecycle of dependency security, without ever touching your source code.
Full-Depth Vulnerability Reporting
Most vulnerabilities hide deep in your dependency tree. DepRadar maps your complete, resolved dependency graph and checks every package — direct or transitive — against known vulnerabilities.
Severity grading shows you which issues to fix first, and the exact dependency path that pulls each one in.
Continuous Monitoring & Real-Time Alerts
New vulnerabilities are published every day. DepRadar keeps watching your latest snapshots against fresh advisories — no rescan required.
Get alerted via your dashboard, email or Slack the moment a new vulnerability affects any of your repositories.
Centralized, Multi-Repo Reporting
One dashboard for every repository and branch. See which packages and versions you depend on, where they're used and how far behind they've fallen.
Drill into any dependency in seconds — no more digging through lockfiles.
Zero Source Code Access
DepRadar respects your code's privacy. Our open-source CLI runs inside your CI/CD pipeline and transmits only dependency metadata — never your source code.
Keep full control of your code while getting full-depth insight into your dependencies.
Effortless Setup
A single CLI command integrates DepRadar into any CI/CD pipeline — GitHub Actions, GitLab, Bitbucket, Azure DevOps or your own.
Run it once, on a schedule, or on every build. The same CLI helps you apply updates and patches when the time comes.
SBOM-Ready Snapshots
Every snapshot is already a complete, versioned inventory of your software supply chain — explore it from your dashboards at any time.
One-click SBOM exports in industry-standard formats like CycloneDX and SPDX are on our roadmap following the initial beta.
Catch Vulnerabilities Before They Catch You
Join the waitlist to get early access the day we launch — and lock in founder pricing while it lasts.
Free tier at launch · No spam · Unsubscribe anytime
Frequently Asked Questions
If you have any other questions or suggestions, please email us at info@depradar.dev
We'd love to hear from you!