Frequently Asked Questions
Can't find the answer you're looking for?
Reach out to us on Discord
listen.dev is a product from Garnet Labs, a company focused on providing observability through the development lifecycle. As modern applications continue to become super dependent on third-parties, developers are losing visibility and control over the software they are shipping into production. Learn more about how we’re solving this through a unique approach.
The listen.dev platform is built by a passionate team with extensive experience in security, observability and developer tools. Having lived the problem ourselves as everyday consumers, maintainers and leaders of industry-standard open source projects, we are all driven by the mission to make the world’s open source more secure and reliable.
As a security company, we take our own security very seriously. Please visit our security page to understand our posture.
Integrate listen.dev in your development and CI environments in minutes by following instructions in our docs page.
You can install the the tool on your local machine or servers using our integration guide.
We only read the manifest files (such as package.json) inside your project’s repository. We do not read any of your code or sensitive data, neither do we run any of your code on your servers. Our client code is open source and accessible on our GitHub. Additonally, you can learn more in our detailed docs and security page. If you have any specifc concerns or feedback, we would love to chat 1:1 at [email protected].
Read more about our detection approach in this detailed guide.