Phylum

Phylum is a company that develops a software supply chain security platform that defends applications at the perimeter of the open-source ecosystem and the tools used to build software. Its automated analysis engine scans third-party code when it is published into the open-source ecosystem to vet software packages, identify risks, inform users, and block attacks. The company offers a database of open-source software supply chain risks.