DepAudit instantly detects hallucinated packages, known CVEs, and deprecated libraries in your package.json — before you run npm install. Powered by the OSV vulnerability database.
No account required · Results in under 10 seconds · Zero install required
DepAudit runs a comprehensive set of checks so you don't have to manually verify every package an AI assistant suggests.
AI models confidently suggest packages that simply do not exist. DepAudit cross-checks every dependency against the live npm and PyPI registries and flags anything that returns a 404.
Real-time CVE detection powered by the OSV (Open Source Vulnerabilities) database. Catch critical, high, medium, and low severity issues before you ship.
Deprecated packages are security liabilities with no upstream fixes. We surface the official deprecation message and suggest maintained alternatives.
Every scan produces a 0–100 dependency health score weighted by hallucinations, vulnerabilities, deprecation, and download counts so you know exactly where to focus.
No setup, no CLI to install. Just paste and scan.
Drop in your package.json, requirements.txt, or raw AI-generated code. DepAudit auto-detects the format.
We query npm, PyPI, and the OSV database in parallel. Results for 50+ packages arrive in under 10 seconds.
See a full breakdown per package — health score, issues, latest versions, and one-click fix suggestions.
Start free. Upgrade when you need more scans or team features.
Perfect for occasional checks and side projects.
For developers who ship AI-assisted code regularly.
For engineering teams shipping AI-generated features.
Custom solutions for large teams.
Start scanning your AI-generated dependencies for free — no account required.
Scan now — it's freeFree forever for 2 scans a month. No account required to get started.