Catch vulnerabilities in your projects, automatically on every pull request. Try Sonatype Lift for free. Install Lift

Integrations

Scan your projects for open source vulnerabilities, and build security into your development toolchain with native tools and integrations. The following scan tools all utilize the OSS Index public REST API.

JavaScript

Go

  • Nancy scans Golang projects

C/C++

.NET

Python

  • ossaudit scans Python projects
  • Jake scans Python and Conda projects

PHP

  • Bach scans Composer projects

Ruby

Rust

R

Other