Node.js Vulnerability Scanner

cover your entire team for

Sooster the Rooster

Cover your entire team for only $99
per month

Scan your code
with a FREE TRIAL
No credit card required.

SOOS provides a deep dependency tree scan to detect open source security vulnerabilities in your Node.js project.

TRY IT FOR FREE

Find.
Prioritize.
Fix.
Monitor.

Node open source intelligence
and open source license
management for all your teams.

SOOS seamlessly integrates with your code repository, CI/CD pipeline and workflow management tools. Setup is fast and easy so that you can start real-time scanning for open-source Node.js vulnerabilities in minutes. Implement timely fixes with integration into your CI/CD system and workflow system of choice.

rooster circle
SOOS supports integration with the following tools

 


SOOS does not scan through your source code. SOOS analyzes the data in your Node.js manifest files, including development dependencies, to find existing security vulnerabilities in your open-source components.

The Node.js manifest formats that we currently support are

  • package.json
  • package.lock.json

 

TRY NOW FOR FREE

SOOS builds a deep dependency tree for your packages and checks them against known vulnerabilities in the NVD and CVE databases as well as in the security advisories in GitHub. This means you don't miss important warnings about libraries/packages you have included in your Node.js application.