Lottie Player (2024)
Attackers injected cryptocurrency miners during npm package builds, exploiting dynamic linking weaknesses that static analyzers missed. Over 4 million deployments were affected before detection.
Detect and block unknown threats in your DevOps pipelines.
Runtime security monitoring for any linux environment where you build, test or run your software.
Your pipeline is always expanding. Unknown threats lurk in that complexity. Garnet gives you visibility and control.
Solana web3.js (Dec 2024)
The official @solana/web3.js npm package was compromised, injecting malicious code to exfiltrate crypto wallet keys–resulting in $190,000 theft from users.
Ultralytics (Dec 2024)
Attackers exploited GitHub Actions cache to take control of the repository, introducing backdoors that installed crypto miners in CI runners. Despite attestation, the malicious behavior went undetected.
Codecov (2021)
A malicious bash script in a popular testing tool exfiltrated credentials from thousands of companies, including Mercari, HashiCorp, and Twilio. It went undetected for two months.
SolarWinds (2020)
A tampered build script infiltrated 6,500+ organizations. Attackers gained persistent access through compromised releases.
How it works
Plug and play protection for modern DevOps pipelines.
1. Connect
Integrate with your pipeline in minutes.
2. Detect
Surface only high priority issues.
3. Alert
Actionable alerts wherever your team works.
Trusted by leading engineering teams.
“There are a lot of tools that process security advisory data, but Garnet is the first I've seen that goes a step further, applying behavioral analysis to find issues before they get reported to an advisory database. This is the kind of thing we'd always wanted to do at npm, Inc., but never got around to. It's super exciting to see it come to fruition. ”
Isaac Z. Schlueter
Isaac Z. Schlueter, NPM, Inc
“I don’t know about you, but having zero observability and no security enforcement in a CI/CD pipeline like GitHub Actions feels pretty scary... I’m looking forward to testing Jibril by Garnet”
Teodor Podobnik
Teodor Podobnik, Greenish
“Dynamic analysis of libraries at build-time is a game changer. It will annihilate a whole new class of vulnerabilities if it works. ”
Ryotax Xin
Ryotax Xin, DogeWallet
See and block unknown threats in your DevOps pipeline.
Behavioral detection & enforcement
Real-time runtime monitoring for network, file and process behaviours in your host environment.
- Block malicious DNS
- Block unauthorized file access
- Block cryptomining activity
Instant threat protection
Stop malicious activity like cryptomining, exfiltration, and tampering with out-of-the-box detections and threat intelligence. Stay ahead of supply chain threats—wherever they emerge.
Actionable alerts where you work
Detect and respond to incidents inside your existing workflow and tools–without the context switch.
- High fidelity alerts in your GitHub and Slack workflows
Protect your DevOps pipeline today.
Gain visibility into unknown threats.