We wrap up 2023 with significant improvements to product experience.
Detections to cover a range of modern supply chain risks
Checks provide detections across a range of supply chain risk vectors through static, metadata and dynamic analysis. We've rolled this out for npm in our public beta, and this provides visibility and intelligence into your open source dependencies and their posture.
Security reviews for each PR
Work with your team and close the loop on security issues for every change in your dependency tree
This is synced with GitHub where context is summarized in a PR comment
The issue review workflow
View and triage issues at the dependency-level, with in-line context to dig deeper.
Triage flows
: snooze and resolve issues, record context UX improvements
: Filtered views, monorepo scopes and tabs