DeepPkg is an AI-powered intelligence service for open-source software artifacts. This tool helps businesses identify risks in their open-source software and provides them with a software bill of materials (SBOM) to manage their software supply chains. It allows users to analyze software from NPM/PYPI/RUBYGEM/Maven package managers.

Find your package

Analyze

click your interested package name to see the analysis results.

You can also download the SBOM file directly from the analysis result page.