LunaTrace is an open source supply chain security and auditing tool that monitors software dependencies for vulnerabilities and security issues. The platform consists of a web console that tracks projects and their dependencies, scanning for known vulnerabilities and other security concerns. It can be used as a Software-as-a-Service offering or deployed and managed on-premises. Key features include: - Automatic dependency monitoring for vulnerability detection - Integration with GitHub Pull Requests to provide notifications about new CVEs before production deployment - GitHub App integration for streamlined setup and usage - Alternative to commercial dependency scanning services The tool also includes Log4Shell CLI, a command line utility specifically designed to scan for Log4Shell vulnerabilities. This component supports patching JAR files against Log4Shell, scanning running system processes, and includes mitigation capabilities. LunaTrace operates as a monorepo containing multiple security tools focused on application security and supply chain protection. The platform aims to provide comprehensive dependency tracking and vulnerability management for software development workflows.