Scans GitHub repositories for vulnerable npm dependencies, providing security insights.
Product memo
For who
Developers and security teams managing Node.js projects
Solves what
Detects outdated and vulnerable npm dependencies in GitHub repositories
- Automated dependency scanning
- Vulnerability alerts
- Health score dashboard
In their own words
Unlock the web withunmatched security
Scan your GitHub repositories for outdated and vulnerable dependencies
Commercial cues
Model
contact only
Free tier
Yes
Trial
Available
Pricing Strategy
NPMScan offers a free tier, with Custom handled through custom pricing.
- • Custom and Enterprise tiers handle larger organizations with specific security needs.
- • Free tier lowers testing friction.
Operator context
Operating setup
Founded
Apr 2024
HQ
United Kingdom
Platform
Web app
Audience
Developers
Payments
Stripe
Detected via TrustMRR
Builder Strategy
- Strategy Type
- Niche Specialist
- Stage
- Pre Revenue
- Effort
- Solo Buildable
About NPM Scan Expand
NPMScan provides a focused product for developers and security teams grappling with Node.js project security. It integrates directly with GitHub to scan for vulnerable and outdated npm dependencies, offering a more broad view than basic alerts.
By delivering dependency health scores and organization overviews, NPMScan helps teams proactively manage risks. This specialization in npm dependencies within the GitHub ecosystem allows it to address a critical, often overlooked, aspect of modern software development security.
