Know what's in your dependencies

Vulnerability scanning, license compliance, and SBOM generation. All local, no code leaves your machine.

Get DepGuard Pro Install Free
$ clawhub install depguard click to copy
$ depguard scan
 
━━━ DepGuard Security Scan ━━━
 
Package managers: npm, pip
 
Vulnerabilities:
✗ CRITICAL lodash 4.17.20 — Prototype Pollution
⚠ HIGH axios 0.21.1 — SSRF vulnerability
✓ 847 packages no known vulnerabilities
 
Licenses:
react-pdf — GPL-3.0 (copyleft)
? legacy-util — UNKNOWN LICENSE
 
✓ 843 permissive ⚠ 3 copyleft ? 3 unknown
10
Package Managers
100%
Local Processing
0
Data Sent Externally
<5s
Average Scan Time

Complete dependency security

🔍

Vulnerability Scanning

Uses native audit tools (npm audit, pip-audit, cargo audit, govulncheck) for accurate, up-to-date vulnerability detection.

📄

License Compliance

Automatically categorizes every dependency license as permissive, copyleft, or unknown. Enforce policies that match your legal requirements.

🪝

Git Hook Protection

Block commits that modify lockfiles with critical vulnerabilities. Catches issues before they reach your main branch.

🔧

Auto-Fix

One command upgrades vulnerable dependencies to patched versions. Supports npm, pnpm, pip, and cargo.

📦

SBOM Generation

Generate CycloneDX SBOMs for compliance and audit requirements. Every dependency cataloged with version, license, and provenance.

🏠

100% Local

No code or dependency lists are sent externally. Works in air-gapped environments. License validation is offline.

Supports every ecosystem

npm yarn pnpm pip cargo go composer bundler maven gradle

Simple, transparent pricing

Start with a free scan. Upgrade for continuous protection.

Free
$0
  • One-shot vulnerability scan
  • License detection
  • Markdown report
  • All 10 package managers
Install Free
Pro
$19/user/mo
  • Everything in Free
  • Git hook enforcement
  • Continuous monitoring
  • Auto-fix vulnerabilities
Get Pro
Team
$39/user/mo
  • Everything in Pro
  • License policy enforcement
  • SBOM generation (CycloneDX)
  • Compliance reports
  • Priority support
Get Team
Enterprise
$59/user/mo
  • Everything in Team
  • SSO / SAML
  • Audit logs
  • Dedicated support + SLA
Contact Sales

Get security tips & DepGuard updates

No spam. One email per week max. Unsubscribe anytime.

Every dependency is an attack surface

Scan yours in 10 seconds. Free, local, and instant.

$ clawhub install depguard click to copy