Hacker News new | ask | show | jobs
by cpach 2185 days ago
IIRC there is some kind of SaaS solution for this but right now I can’t recall its name. Maybe someone else here knows?

Edited: I reached out to some security people and it seems like the following are popular tools for this use case: Snyk / Dependabot / Whitesource.
1 comments
gitgud 2185 days ago
Github have a security check that scans your repo's dependencies and warns you about vulnerabilities too
link