What is the pricing for sdc-check?

sdc-check is a free Application Security tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/mbalabash/sdc-check/ for download and installation instructions.

What are alternatives to sdc-check?

Popular alternatives to sdc-check include: 1. Meterian Componentpedia - Database for researching & tracking open source components with safety scores. (Free) 2. Veracode Secure Your Software Supply Chain - Software supply chain security platform with SCA, package firewall & threat intel (Commercial) 3. Checkmarx One Malicious Package Protection - Detects malicious open-source packages across SDLC using 410K+ package database (Commercial) 4. Aikido Software Supply Chain Security - Software supply chain security platform detecting malware in dependencies (Commercial) 5. Chainguard Libraries - Malware-resistant software libraries rebuilt from source for multiple languages (Commercial) Compare these tools and more at https://cybersectools.com/categories/application-security

Who should use sdc-check?

sdc-check is for security teams and organizations that need Dependency Scanning, Security Scanning, Package Security, Software Supply Chain. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Application Security tools can be found at https://cybersectools.com/categories/application-security

sdc-check

A dependency security analysis tool that identifies potential risks in project dependencies including unsafe lock files, installation scripts, obfuscated code, and dangerous shell commands.

Free142

Visit Website

Compare

Free142

sdc-check

A dependency security analysis tool that identifies potential risks in project dependencies including unsafe lock files, installation scripts, obfuscated code, and dangerous shell commands.

Visit Website

Data verified Apr 2026

Explore Application Security 48 Alternatives Compare Stacks Market Map Explore All Tools

ADYour product here. Reach security decision-makers.Launch a campaign

sdc-check Description

Application Security/Software Composition Analysis

Dependency Scanning Security Scanning Package Security Software Supply Chain

sdc-check is a dependency security analysis tool that identifies potential risks in project dependency lists and lock files. The tool performs multiple security checks on project dependencies: - Detects unsafe lock files where malicious actors could replace URLs with packages containing malicious code - Identifies packages that are too new, suggesting waiting before upgrading to allow community testing - Scans for installation scripts that could execute malicious commands during package installation - Detects obfuscated code within packages that may hide potentially malicious functionality - Identifies packages containing OS scripts (.bat/.sh files) that could execute malicious actions - Analyzes package scripts for dangerous shell commands like curl, wget, chmod, and cacls The tool helps developers assess the security posture of their project dependencies by flagging various risk indicators that could indicate supply chain attacks or malicious packages.

sdc-check Description

Application Security/Software Composition Analysis

Dependency Scanning Security Scanning Package Security Software Supply Chain

sdc-check FAQ

Common questions about sdc-check including features, pricing, alternatives, and user reviews.

sdc-check is A dependency security analysis tool that identifies potential risks in project dependencies including unsafe lock files, installation scripts, obfuscated code, and dangerous shell commands. It is a Application Security solution designed to help security teams with Dependency Scanning, Security Scanning, Package Security.

Have more questions? Browse our categories or search for specific tools.