Phylum
About Phylum
Phylum is a software supply chain security company that defends applications against malicious open-source packages. The platform analyzes open-source software packages for malware, vulnerabilities, author risk, and engineering risk using automated analysis pipelines. Phylum integrates into CI/CD workflows to block risky dependencies before they enter the software supply chain. The company serves enterprise development teams seeking to protect against software supply chain attacks and dependency confusion.
Why Notable
Software supply chain threat detection