deps.sh
Supply chain risk scoring as a service. GitHub · LinkedIn
curl -L deps.sh/npm/lodash # npm package
curl -L deps.sh/pip/requests # PyPI package
curl -L deps.sh/cargo/serde # crates.io package
curl -L deps.sh/lodash # defaults to npm
curl -L deps.sh/recent # high-risk packages (last scan)
curl -L deps.sh/feed # security advisories
curl -L deps.sh/incidents # supply chain incidents
curl -L deps.sh/transfers # ownership transfers
curl -L -X POST deps.sh/scan -d @package-lock.json # lockfile scan
curl -L deps.sh/npm/lodash?json # JSON output
Recent Advisories (22m ago)
- cargo RUSTSEC-2026-0119: Vulnerability in hickory-proto 2d ago
- cargo RUSTSEC-2026-0118: Vulnerability in hickory-proto 2d ago
- cargo RUSTSEC-2026-0120: Vulnerability in hickory-net 2d ago
- cargo RUSTSEC-2026-0115: Unsoundness in imageproc 2d ago
- cargo RUSTSEC-2026-0116: Unsoundness in imageproc 2d ago
- cargo RUSTSEC-2026-0117: Unsoundness in imageproc 2d ago
- LOW npm [copilot-api] copilot-api has Reliance on Reverse DNS Resolution for a Security-Critical Action 3d ago
- LOW pypi [verl] verl's math_equal() Vulnerable to Arbitrary Code Execution via Unsafe eval() 3d ago
- CRITICAL pypi [sentry] Sentry's improper authentication on SAML SSO process allows user identity linking 3d ago
- MODERATE pypi [agentscope] AgentScope Vulnerable to Remote Code Injection 3d ago
- HIGH npm [@clerk/hono] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
- HIGH npm [@clerk/express] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
- HIGH npm [@clerk/express] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
- HIGH npm [@clerk/fastify] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
- HIGH npm [@clerk/fastify] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
- HIGH npm [@clerk/chrome-extension] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
- HIGH npm [@clerk/chrome-extension] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
- HIGH npm [@clerk/tanstack-react-start] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
- HIGH npm [@clerk/tanstack-react-start] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
- HIGH npm [@clerk/react-router] Clerk has an authorization bypass when combining organization, billing, or reverification checks 3d ago
Supply Chain Incidents (22m ago)