Stay vigilant. Build with confidence.

listen.dev provides real-time visibility, intelligence and control over open source dependencies.

Get lstn for GitHub
Book a Demo

AI-assisted developer security

Find, prioritize, and fix relevant security issues faster. Supercharge dependency management using listen.dev.

Prevent supply chain attacks

Proactive runtime monitoring detects install scripts, obfuscated code, and other malicious activity that traditional scanners may miss.
Learn more

Unlock developer superpowers

Contextual insights and actionable recommendations inside dev environments to stay informed while you build.
Learn more

Automate security controls

Enforce behavior-based policy to set guardrails across the development lifecycle to prevent costly mistakes.
Learn more

Dev-time feedback

Get real-time dependency insights

Monitor every change in your dependency tree, and get alerted on deviations from expected behavior. Right inside your workflows.

lstn PR comment

Gain actionable context

Understand and fix issues at the core

See how packages behave before you install them. Use execution traces, criticality, and source & sink information for effective priorization and remediation.

lstn PR context

Assert control

Enforce policy in CI

Use rule-based policies to automatically block packages based on criticality, behavior, and more. Customize alerts using our pre-defined ruleset, or easily create your own.

lstn policy

Take control of your dependencies with listen.dev

Get lstn for GitHub
Read Docs

Get up and running in less than 5 minutes.

Simplify vulnerability management

Focus on code, not alerts.

Unlike traditional scanners, listen.dev uses runtime context and AI to surface the most critical issues. This helps engineering move faster while streamlining security ops.

"There are a lot of tools that process security advisory data, but listen.dev is the first I've seen that goes a step further, applying behavioral analysis to find issues before they get reported to an advisory database. This is the kind of thing we'd always wanted to do at npm, Inc., but never got around to. It's super exciting to see it come to fruition."

profile picture
  isaacs (creator of npm)