Stacklok Insight is a free-to-use web app that provides data and scoring on the supply chain risk for open source packages.
Apply and continuously enforce security best practices and community standards across your repositories
Use our managed policy templates to apply and enforce security features across your repositories that meet OpenSSF Scorecard standards
Turn on autoremediation and Stacklok will reapply disabled settings and features, so you can free yourself from manual compliance monitoring
Define policies for groups of repositories, then apply them retroactively to existing repositories and automatically to any new repositories