Introducing G2.ai, the future of software buying.Try now

Best Software Supply Chain Security Solutions - Page 2

Adam Crivello
AC
Researched and written by Adam Crivello

Software supply chain security tools provide automated and continuous monitoring of the various components and stages of the software development process. This includes analyzing the source code, identifying potential security risks, scanning for malicious code, and verifying the authenticity of third-party components and dependencies.

Software supply chain security refers to the process of securing the software development lifecycle from start to finish. It involves safeguarding against any potential vulnerabilities or threats to the software supply chain that could compromise the integrity of the software.

These tools can also detect any attempts to tamper with the software during the development or deployment stages. They help ensure that only trusted and validated software components are included in the final product, thereby minimizing the risk of introducing any vulnerabilities or malware into the software supply chain. Software supply chain security solutions are often used alongside tools such as static code analysis tools to seek out and protect against potential vulnerabilities.

To qualify for inclusion in the Software Supply Chain Security category, a product must:

Provide automated and continuous monitoring of various components of the development process
Detect attempts to tamper with the software during the development or deployment stages
Scan for malicious code and security risks
Verify authenticity of third-party components
Show More
Show Less

Featured Software Supply Chain Security Solutions At A Glance

Free Plan Available:
Aikido Security
Sponsored
Aikido Security
Leader:
OX Security
OX Security
Highest Performer:
Aikido Security
Aikido Security
Easiest to Use:
Aikido Security
Aikido Security
Top Trending:
Aikido Security
Aikido Security
Show LessShow More
Highest Performer:
Aikido Security
Aikido Security
Easiest to Use:
Aikido Security
Aikido Security
Top Trending:
Aikido Security
Aikido Security

G2 takes pride in showing unbiased reviews on user satisfaction in our ratings and reports. We do not allow paid placements in any of our ratings, rankings, or reports. Learn about our scoring methodologies.

Coming Soon
Get Trending Software Supply Chain Security Tools Products in Your Inbox

A weekly snapshot of rising stars, new launches, and what everyone's buzzing about.

Sample Trending Products Newsletter
No filters applied
Clear Filter
More Filters
Market Segments
All Segments
Mid Market
Avg. Customer Review
Language
Pricing
Sort by
Clear All
28 Listings in Software Supply Chain Security Tools Available
  • Sort By:
    G2 Score
Appsec360
0 ratings
Save to My Lists
Free trial available
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    AppSec360 is a platform for AI-driven software development to become Secure-by-Design.

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    Appsec360
    Year Founded
    2020
    HQ Location
    Melbourne, AU
    LinkedIn® Page
    www.linkedin.com
    3 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

AppSec360 is a platform for AI-driven software development to become Secure-by-Design.

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
Appsec360
Year Founded
2020
HQ Location
Melbourne, AU
LinkedIn® Page
www.linkedin.com
3 employees on LinkedIn®
Conviso
0 ratings
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    The Conviso Platform is a complete Application Security Posture Management (ASPM) solution that centralizes visibility, correlation, and prioritization of vulnerabilities across the software developme

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    Conviso Application Security
    Year Founded
    2008
    HQ Location
    Curitiba, BR
    LinkedIn® Page
    www.linkedin.com
    81 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

The Conviso Platform is a complete Application Security Posture Management (ASPM) solution that centralizes visibility, correlation, and prioritization of vulnerabilities across the software developme

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
Conviso Application Security
Year Founded
2008
HQ Location
Curitiba, BR
LinkedIn® Page
www.linkedin.com
81 employees on LinkedIn®

G2 Deals

Buying software just got smarter. And cheaper.

This is how G2 Deals can help you:

  • Easily shop for curated – and trusted – software
  • Own your own software buying journey
  • Discover exclusive deals on software
See Exclusive Offers
Gauntlet
(1)5.0 out of 5
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    Gauntlet mitigates risks like security breaches, data theft, and compliance violations with Generative AI (GenAI), enhancing efficiency by accelerating time-to-fix by 60%. Its core pillars include Clo

    Users
    No information available
    Industries
    No information available
    Market Segment
    • 100% Small-Business
  • Pros and Cons
    Expand/Collapse Pros and Cons
    • Gauntlet Pros and Cons
    How are these determined?Information
    Pros and Cons are compiled from review feedback and grouped into themes to provide an easy-to-understand summary of user reviews.
    Pros
    Customer Success
    1
    Remediation Guidance
    1
    Reporting
    1
    Cons
    Inefficient Alert System
    1
    View All Pros and Cons
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    Gauntlet Technologies
    HQ Location
    N/A
    LinkedIn® Page
    www.linkedin.com
    1 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

Gauntlet mitigates risks like security breaches, data theft, and compliance violations with Generative AI (GenAI), enhancing efficiency by accelerating time-to-fix by 60%. Its core pillars include Clo

Users
No information available
Industries
No information available
Market Segment
  • 100% Small-Business
Gauntlet Pros and Cons
How are these determined?Information
Pros and Cons are compiled from review feedback and grouped into themes to provide an easy-to-understand summary of user reviews.
Pros
Customer Success
1
Remediation Guidance
1
Reporting
1
Cons
Inefficient Alert System
1
View All Pros and Cons
Seller Details
Seller
Gauntlet Technologies
HQ Location
N/A
LinkedIn® Page
www.linkedin.com
1 employees on LinkedIn®
Guardian
0 ratings
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    Enable enterprise level enforcement and management of model security to block unsafe models from entering your environment.

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    Palo Alto Networks
    Year Founded
    2005
    HQ Location
    Santa Clara, CA
    Twitter
    @PaloAltoNtwks
    127,306 Twitter followers
    LinkedIn® Page
    www.linkedin.com
    18,396 employees on LinkedIn®
    Ownership
    NYSE: PANW
Product Description
How are these determined?Information
This description is provided by the seller.

Enable enterprise level enforcement and management of model security to block unsafe models from entering your environment.

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
Palo Alto Networks
Year Founded
2005
HQ Location
Santa Clara, CA
Twitter
@PaloAltoNtwks
127,306 Twitter followers
LinkedIn® Page
www.linkedin.com
18,396 employees on LinkedIn®
Ownership
NYSE: PANW
IRIS
0 ratings
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    CodeEye's IRIS is a next-generation application security posture management (ASPM) platform, offers an all-in-one solution with real-time, AI-powered vulnerability and threat detection, correlation, p

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    CodeEye
    Year Founded
    2015
    HQ Location
    Toronto, CA
    Twitter
    @CodeEyeAI
    6 Twitter followers
    LinkedIn® Page
    www.linkedin.com
    18 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

CodeEye's IRIS is a next-generation application security posture management (ASPM) platform, offers an all-in-one solution with real-time, AI-powered vulnerability and threat detection, correlation, p

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
CodeEye
Year Founded
2015
HQ Location
Toronto, CA
Twitter
@CodeEyeAI
6 Twitter followers
LinkedIn® Page
www.linkedin.com
18 employees on LinkedIn®
Legit Security
0 ratings
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    Legit Security provides an application security posture management platform that secures application delivery from code to cloud and protects an organization's software supply chain from attacks. The

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    Legit Security
    HQ Location
    Boston, Massachusetts, United States
    LinkedIn® Page
    www.linkedin.com
    99 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

Legit Security provides an application security posture management platform that secures application delivery from code to cloud and protects an organization's software supply chain from attacks. The

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
Legit Security
HQ Location
Boston, Massachusetts, United States
LinkedIn® Page
www.linkedin.com
99 employees on LinkedIn®
Listen.dev
0 ratings
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    Proactive monitoring and Threat Detection for GitHub CI Workflows

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    Garnet Labs
    HQ Location
    N/A
    LinkedIn® Page
    www.linkedin.com
    1 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

Proactive monitoring and Threat Detection for GitHub CI Workflows

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
Garnet Labs
HQ Location
N/A
LinkedIn® Page
www.linkedin.com
1 employees on LinkedIn®
Phylum
0 ratings
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    Phylum defends applications at the perimeter of the open-source ecosystem and the tools used to build software. Its automated analysis engine scans third-party code as soon as it’s published into the

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    Phylum
    Year Founded
    2006
    HQ Location
    Burlington, Massachusetts, United States
    Twitter
    @Phylum_IO
    334 Twitter followers
    LinkedIn® Page
    www.linkedin.com
    541 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

Phylum defends applications at the perimeter of the open-source ecosystem and the tools used to build software. Its automated analysis engine scans third-party code as soon as it’s published into the

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
Phylum
Year Founded
2006
HQ Location
Burlington, Massachusetts, United States
Twitter
@Phylum_IO
334 Twitter followers
LinkedIn® Page
www.linkedin.com
541 employees on LinkedIn®
Rezillion
0 ratings
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    Automatically detect, prioritize and remediate software risk - without an agent - to relieve security bottlenecks and free developer resources to build.

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    rezilion
    Year Founded
    2018
    HQ Location
    Be'er Sheva, Israel
    Twitter
    @rezilion_
    204 Twitter followers
    LinkedIn® Page
    www.linkedin.com
    6 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

Automatically detect, prioritize and remediate software risk - without an agent - to relieve security bottlenecks and free developer resources to build.

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
rezilion
Year Founded
2018
HQ Location
Be'er Sheva, Israel
Twitter
@rezilion_
204 Twitter followers
LinkedIn® Page
www.linkedin.com
6 employees on LinkedIn®
Scribe Security Trust Hub
0 ratings
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    Scribe is a SaaS solution that provides continuous assurance for the security and trust worthiness of software artifacts, acting as a trust hub between software producers and consumers. Scribe centr

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    Scribe Security
    HQ Location
    Tel Aviv, IL
    LinkedIn® Page
    www.linkedin.com
    25 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

Scribe is a SaaS solution that provides continuous assurance for the security and trust worthiness of software artifacts, acting as a trust hub between software producers and consumers. Scribe centr

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
Scribe Security
HQ Location
Tel Aviv, IL
LinkedIn® Page
www.linkedin.com
25 employees on LinkedIn®
SecureStack
0 ratings
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    SecureStack helps software developers find security & scalability gaps in their web applications and offers ways to fix those gaps without forcing those developers to become security experts.

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    SecureStack
    Year Founded
    2017
    HQ Location
    Southport, AU
    LinkedIn® Page
    www.linkedin.com
    1 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

SecureStack helps software developers find security & scalability gaps in their web applications and offers ways to fix those gaps without forcing those developers to become security experts.

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
SecureStack
Year Founded
2017
HQ Location
Southport, AU
LinkedIn® Page
www.linkedin.com
1 employees on LinkedIn®
The Code Registry
(3)5.0 out of 5
Save to My Lists
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    The Code Registry is the world's first AI-powered code intelligence and insights platform, designed to safeguard and optimize software assets for businesses. By providing an independent, secure replic

    Users
    No information available
    Industries
    No information available
    Market Segment
    • 67% Small-Business
    • 33% Mid-Market
  • Pros and Cons
    Expand/Collapse Pros and Cons
    • The Code Registry Pros and Cons
    How are these determined?Information
    Pros and Cons are compiled from review feedback and grouped into themes to provide an easy-to-understand summary of user reviews.
    Pros
    Ease of Use
    3
    Customer Support
    2
    Software Updates
    2
    Updates
    2
    Alert Notifications
    1
    Cons
    This product has not yet received any negative sentiments.
    View All Pros and Cons
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    The Code Registry
    Year Founded
    1999
    HQ Location
    Lafayette Hill, US
    Twitter
    @TheCodeRegistry
    5 Twitter followers
    LinkedIn® Page
    www.linkedin.com
    10 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

The Code Registry is the world's first AI-powered code intelligence and insights platform, designed to safeguard and optimize software assets for businesses. By providing an independent, secure replic

Users
No information available
Industries
No information available
Market Segment
  • 67% Small-Business
  • 33% Mid-Market
The Code Registry Pros and Cons
How are these determined?Information
Pros and Cons are compiled from review feedback and grouped into themes to provide an easy-to-understand summary of user reviews.
Pros
Ease of Use
3
Customer Support
2
Software Updates
2
Updates
2
Alert Notifications
1
Cons
This product has not yet received any negative sentiments.
View All Pros and Cons
Seller Details
Seller
The Code Registry
Year Founded
1999
HQ Location
Lafayette Hill, US
Twitter
@TheCodeRegistry
5 Twitter followers
LinkedIn® Page
www.linkedin.com
10 employees on LinkedIn®
ZeroPath
0 ratings
Save to My Lists
Entry Level Price:Free
  • Overview
    Expand/Collapse Overview
    • Product Description
    How are these determined?Information
    This description is provided by the seller.

    ZeroPath (YC S24) is the first AI-native application security platform that fundamentally reimagines how organizations find and fix vulnerabilities. Unlike deterministic SAST tools that bolt AI onto l

    We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
    Industries
    No information available
    Market Segment
    No information available
  • Seller Details
    Expand/Collapse Seller Details
    • Seller Details
    Seller
    ZeroPath
    Company Website
    Year Founded
    2024
    HQ Location
    San Francisco, US
    LinkedIn® Page
    www.linkedin.com
    7 employees on LinkedIn®
Product Description
How are these determined?Information
This description is provided by the seller.

ZeroPath (YC S24) is the first AI-native application security platform that fundamentally reimagines how organizations find and fix vulnerabilities. Unlike deterministic SAST tools that bolt AI onto l

We don't have enough data from reviews to share who uses this product. Leave a review to contribute, or learn more about review generation.
Industries
No information available
Market Segment
No information available
Seller Details
Seller
ZeroPath
Company Website
Year Founded
2024
HQ Location
San Francisco, US
LinkedIn® Page
www.linkedin.com
7 employees on LinkedIn®
Filters
Filter
Clear Filter
More Filters
Market Segments
All Segments
Mid Market
Avg. Customer Review
Language
Pricing
Sort by
Clear All
Clear Filter
More Filters
Market Segments
All Segments
Mid Market
Avg. Customer Review
Language
Pricing
Sort by
Clear All
28 Listings in Software Supply Chain Security Tools Available
  • Sort By:
    G2 Score

Recommended For You

Rippling
Zendesk for Customer Service - AC
Paylocity
ADP Workforce Now
Connecteam