depgaze — Dependency execution intelligenceSkip to contentEarly access
V1 live · npm + PyPI · agent-readyDependency execution intelligence<br>Security for the code you didn't write.<br>Modern software is assembled, not written. depgaze checks the dependencies moving through your pipeline and your editor — the malicious, the abandoned, the risky — and tells you what to do about them.<br>Request early access See it in action<br>Works in CI/CD<br>npm + PyPI<br>Bring your own LLM<br>Callable by AI agents
depgaze · live verdictmalicious@5.6.1Blocked<br>Behaves like credential theft — reaches out to a server it has no reason to contact while installing.<br>Fixremove it before it runs — rotate any exposed tokens.
lodash@4.17.21Allowed<br>Clean. Does exactly what a utility library should — and nothing else.
The problem<br>Most of your software is code you never reviewed.
A maintainer you'll never meet ships a new version at 2 a.m. Your pipeline pulls it within the hour and runs it — with your tokens, your secrets, your production network. You find out it was compromised when everyone else does: from the advisory, hours later. By then, it has already run.<br>In 2025 alone, 454,648 packages in the wild were outright malicious — and most of the code in your build is code you never chose to install.
You choose about ten dependencies. Your build ships more than eighty.<br>Per projectnpm · JavaScriptPyPI · Python<br>Dependencies you actually choose~10~6<br>Packages your build installs80–85+15–20<br>Transitive multiplier7.5×–10×2×–3×<br>Average dependency-tree depth4.39 levels1.7 levels<br>Extreme case (web frameworks)50×–100×rarely > 5×
The vast majority of what you ship is transitive — pulled in by your dependencies' dependencies. It is the largest, least-watched attack surface in modern software.
The product<br>Protection that lives where developers work.<br>depgaze runs inside CI and your editor, at install time — the moment a dependency actually enters your project, and the only point early enough to do something about it.
Step 01Observe<br>Watch every dependency entering your pipeline and your local dev loop, across npm and PyPI.
Step 02Judge<br>Score each package for malice, rot, triviality, and risk — in real time, at the moment it's installed.
Step 03Explain & fix<br>Surface a plain-language verdict and a concrete fix — to the developer, or to the agent that called it.
Step 04Learn<br>Every decision sharpens the judgment behind the next one. The product compounds with use.
Agent-readyAI agents pull dependencies at machine speed, with no one reading the diff. depgaze answers to them the same way it answers to you.
In action<br>It judges what a package does.<br>Most tools read a package's code and infer intent. depgaze looks at how it behaves — so it catches the compromises that pass reputation checks and CVE lists. A trusted package, a poisoned update: you get what happened, in plain language, the moment it happens. Plus the fix.<br>Plain-language verdicts<br>A specific fix<br>For developers and agents alike
depgaze · session<br>$ depgaze analyze malicious@5.6.1<br>→ran the install in a safe, throwaway space — nothing touched the real machine<br>!spawned a hidden background process<br>!read ~/.npmrc — your registry credentials<br>!opened a connection to 23.105.x.x — a server it had never contacted
Blockedlooks like credential exfiltration<br>Fixremove it, and rotate anything it could read
FAQ<br>Questions teams ask first.<br>What depgaze does, where it fits, and an honest line about what we keep behind the curtain.
How is this different from npm audit or a CVE scanner?<br>Those check your dependencies against a list of already-known vulnerabilities. They can't see a brand-new compromise — a zero-day, a hijacked maintainer account, malicious code freshly slipped into a trusted package. depgaze doesn't rely on reputation or history; it judges a package on how it actually behaves, so a first-of-its-kind attack is caught the first time it runs.
Does it slow down my pipeline?<br>It's built to live at install and build time without getting in the way. You get a clear allow / block verdict and a recommended fix in the flow you already use — CI/CD or the inner loop — not a separate dashboard you have to remember to check.
Can AI coding agents use it?<br>Yes — depgaze is callable by agents from V1, not just by humans. As agents pull dependencies at machine speed with no one reading the diff, depgaze acts as the guardrail they invoke before code lands.
Which ecosystems do you support?<br>npm and Python (PyPI) are live today — the two registries that run most of the software world. More are on the roadmap. Most modern teams touch both, and depgaze covers them in one workflow.
Will my code or secrets leave my environment?<br>depgaze runs where you work and supports bringing your own model provider, so you stay in control of where analysis happens and what leaves your infrastructure. Security-conscious teams can keep everything in-house.
How does depgaze actually decide?<br>That's the part we keep close. What we'll say: it...