Security
npm Vulnerability Scanner
Pull OSV-backed vulnerability data for any npm package. Free, no signup.
Scan any npm package
curl https://depscope.dev/api/vulns/npm/lodash
Returns CVE/GHSA/OSV vulnerabilities, severity, affected versions, and the fixed version. Backed by the Open Source Vulnerability database.