Vet

Vet is an open-source software supply chain security tool that helps developers and security engineers identify vulnerabilities and malicious packages in their dependencies. It offers next-generation Software Composition Analysis (SCA), policy as code using CEL, and real-time malicious package detection powered by SafeDep Cloud. With support for multiple ecosystems like npm, PyPI, Maven, and CI/CD integration, Vet aims to provide comprehensive supply chain security for DevSecOps workflows.