Skip to content
@safedep

SafeDep

Safe & Trusted Open Source Components
README.md

👋 Welcome to SafeDep

SafeDep Banner

⚡️ Protect Your Code. Stop Malicious Packages.

We scan the code you didn’t write — before it reaches your codebase. SafeDep protects you from malicious code hidden in open source packages you install every day.

🚀 Get Started

  • 🌐 Explore our website: safedep.io
  • 🔒 Secure your supply chain with vet

💡 Why SafeDep?

  • ✅ Detect malicious packages in real-time
  • ✅ Protect your builds and CI/CD pipelines
  • ✅ Reduce risks from compromised dependencies
  • ✅ Open source tooling, trusted by developers

🤝 Join Us

  • ⭐ Star our repos to support the project
  • 🐛 Contribute, open issues, and share feedback
  • 📢 Stay updated with our work in open source security

📝 SafeDep is here to secure the open source ecosystem — one package at a time.

Pinned Loading

  1. vet vet Public

    Protect against malicious open source packages 🤖

    Go 850 70

  2. vet-action vet-action Public

    GitHub Action for policy driven vetting of open source dependencies

    TypeScript 11 2

Repositories

Showing 10 of 29 repositories
  • vet Public

    Protect against malicious open source packages 🤖

    safedep/vet’s past year of commit activity
    Go 850 Apache-2.0 70 77 (1 issue needs help) 17 Updated Nov 25, 2025
  • homebrew-tap Public
    safedep/homebrew-tap’s past year of commit activity
    Ruby 0 0 0 0 Updated Nov 18, 2025
  • dry Public

    Do not repeat yourself. Re-usable utils for Go apps

    safedep/dry’s past year of commit activity
    Go 2 Apache-2.0 0 3 1 Updated Nov 17, 2025
  • docs Public
    safedep/docs’s past year of commit activity
    MDX 0 0 1 0 Updated Nov 16, 2025
  • pmg Public

    PMG protects developers from getting compromised by malicious packages

    safedep/pmg’s past year of commit activity
    Go 84 Apache-2.0 6 4 (4 issues need help) 1 Updated Nov 11, 2025
  • vet-action Public

    GitHub Action for policy driven vetting of open source dependencies

    safedep/vet-action’s past year of commit activity
    TypeScript 11 Apache-2.0 2 9 6 Updated Nov 7, 2025
  • xbom Public

    Generate xBOMs enriched with AI, SaaS, Crypto and more using Static Code Analysis

    safedep/xbom’s past year of commit activity
    Go 22 Apache-2.0 2 9 (4 issues need help) 2 Updated Oct 28, 2025
  • code Public

    SafeDep Code Analysis Framework

    safedep/code’s past year of commit activity
    Go 2 Apache-2.0 2 6 0 Updated Oct 26, 2025
  • platform.safedep.io Public

    SafeDep Platform Frontend

    safedep/platform.safedep.io’s past year of commit activity
    TypeScript 2 Apache-2.0 2 6 1 Updated Oct 11, 2025
  • safedep.github.io Public

    SafeDep Website

    safedep/safedep.github.io’s past year of commit activity
    0 0 0 1 Updated Oct 9, 2025
View all repositories

Most used topics

Loading…
Developer Program Member