Comprehensive Vulnerability Detection with Safety CLI
Safety CLI is a Python dependency vulnerability scanner that enhances software supply chain security. It detects packages with known vulnerabilities and malicious packages in various environments, providing clear remediation recommendations.
It leverages a comprehensive database of vulnerabilities and malicious packages, allowing teams to detect vulnerabilities throughout the software development lifecycle.
It is an ideal solution for pentesters and devOps to scan for apps and systems vulnerabilities.
Features
- Versatile, comprehensive dependency security scanning for Python packages.
- Leverages Safety DB, the most comprehensive vulnerability data available for Python.
- Clear output with detailed recommendations for vulnerability remediation.
- Automatically updates requirements files to secure versions of dependencies where available, guided by your project's policy settings.
- Scanning of individual requirements files and project directories or system-wide scans on developer machines, CI/CD pipelines, and Production systems to detect vulnerable or malicious dependencies.
- JSON, SBOM, HTML and text output.
- Easy integration with CI/CD pipelines, including GitHub Actions.
- Enterprise Ready: Safety CLI can be deployed to large teams with complex project setups with ease, on-premise or as a SaaS product.
- Docker installation support
- Integrates with many Git similar services
- Output in JSON, SBOM, and HTML formats
License
The app is released under the MIT License.