The best supply-chain auditing tool for JavaScript

Jam-packed with JavaScript specific auditing features, with a fall-back to basic auditing for other languages.

Situationally Aware

LunaTrace processes a complete model of your source code and dependency tree. Where it can, it uses this information to eliminate false positives. Where it can't, it exposes the information to you so that you can make a decision faster.

Open Source

Built out of extendable, Open Source components that you can read, inspect, and even host for yourself.