SCA
Audit lockfiles without adding another cloud dependency.
Radar checks dependency risk from bundled and cached vulnerability data, so SCA remains fast and predictable.
Lockfile coverage
Scan common package ecosystems and report advisory identifiers in the same merge-readiness output.
- Cargo.lock
- package-lock.json
- pnpm-lock.yaml
- requirements.txt
CI friendly
Emit SARIF and JSON so dependency findings can show up next to code scanning alerts.