LibTracker Logo

LibTracker

Guaranteed CRA compliance

The all-in-one solution to manage your dependencies and stay CRA compliant

LibTracker automates the generation of your SBOM, monitors vulnerabilities in real-time, and guarantees your regulatory compliance

<5 min

CI/CD Integration

Drapeau français - Solution souveraine

Sovereign solution

Happy devs

Automatic dependency tracking

Core Features

Everything you need for CRA compliance and much more

inventory_2

Automatic SBOM Generation

SBOM automatically generated at every build, without manual intervention

  • check_circleSPDX, CycloneDX formats
  • check_circleDirect and transitive dependencies
  • check_circleComplete metadata (versions, licenses, hash)
security

Real-time CVE Detection

Continuous vulnerability monitoring with instant alerts

  • check_circleCVE database synchronized regularly
  • check_circleCVSS score and criticality
  • check_circleSlack, Email, Webhooks alerts (in development)
integration_instructions

Simple and fast integration

Compatible with your existing CI/CD tools and workflows

  • check_circleGitHub Actions, GitLab CI, Jenkins
  • check_circleVSCode plugin for developers (in development)
  • check_circleComplete REST API
verified_user

Guaranteed CRA Compliance

Meet Cyber Resilience Act requirements for software dependency management and traceability

  • check_circleArticle 23 compliant SBOM
  • check_circleAutomatic documentation
  • check_circleComplete audit trail

How does it work?

A simple 4-step process

link1

Send your .lock files

Transmit your dependency files via secure API, without repo access

search2

.lock files analysis

LibTracker analyzes your dependency files (.lock) for maximum security

inventory_23

SBOM generated

SBOM production in SPDX/CycloneDX formats, available on LibTracker platform or stored on your infrastructure

security4

Continuous monitoring

Real-time alerts on new CVEs

Supported Languages and Package Managers

Compatible with your technology stack

JavaScript/TypeScript

npm
yarn
pnpm
bun

Python

pip
uv
poetry
pipenv
conda

Java/Kotlin

maven
gradle
ant

.NET/C#

nuget
paket

PHP

composer

Ruby

bundler
gem

Go

go mod
dep

Rust

cargo

And many more...

Use Cases

LibTracker adapts to your needs

Startups & Scale-ups

Implement CRA / SBOM compliance from the start. Monitor your dependencies without slowing down your development.

  • doneAutomatic SBOM for each release
  • doneCompliance documentation
  • doneCentralized multi-product management

Large enterprises

Manage security for hundreds of projects. Consolidated reports and dashboards for teams.

  • doneMulti-team consolidated view
  • doneGlobal security policies
  • doneGroup compliance reports

Agencies & IT Services

Offer CRA / SBOM compliance to your clients. Integration into your existing delivery processes.

  • doneNative multi-tenancy
  • doneCustomized client reports
  • donePer-project billing

Scan your dependencies

First CVE detected in under 10 minutes. You might be surprised.