Vulnerability Detection

Find vulnerabilities, in more than 400 languages, early in your development lifecycle by integrating Threatrix open source vulnerability detection into your existing tool suite

  • Depth of Coverage

    We maintain comprehensive vulnerability data across 400 languages from every known public repository including NVD, NPM Security, Rubygems Redhat Security, Alpine security among numerous others

  • Zero-Day Vulnerability Coverage

    While public databases of vulnerabilities are necessary, we must remain diligent. Our first to market technology employs machine learning to search petabytes of dark web data searching for vulnerabilities in open source libraries.

  • Secure Version Recommendations

    Vulnerability remediation is a snap with library secure version advice for each vulnerable component. Available from our dashboard or within your SCM, as annotations, saving your developers time and reducing MTTR by up to 95%.

  • Automatically Fix Vulnerabilities Directly In GitHub, GitLab or BitBucket

    Risk reduction should be simple. With one click your vulnerable dependency will be upgraded to a secure version. A pull request will be created on a new branch so that your developers can test the change before merging the change into your development branch.

Build Tools Integration

Automating the detection of open source vulnerabilities, licenses, and supply chain risk and quality is a snap. We seamlessly integrate into tons of build tools and can quickly deliver risk remediation suggestions

  • Jenkins
  • Gitlab
  • Azure Pipelines
  • Bamboo
  • Circle CI
  • Cloudbees
  • Team City
  • TravisCI
  • AWS Code Build
  • CodeShip
  • Buddy
  • Semaphore CI