Vet

Vet is an open source tool designed to scan and govern software dependencies across every pull request (PR) and build. It is aimed at development and security teams seeking to automate supply chain security by identifying, assessing, and reporting risks or vulnerabilities in their code dependencies in real-time. Vet helps users proactively detect malicious or risky packages before they are integrated into their codebase.