Read more on some technical details into our analysis platform in Google's blog. https://t.co/JEESgQg3cF

Thanks @googlecloud for featuring DeepSource in their latest case study! We've been building on GCP since day one, and now process 1B+ lines of code every month for 7,000+ teams that trust us to ship secure code. We also use Gemini extensively for Autofix™ AI and Agents.

🪄 We’re expanding our partnership with @TrustVanta. DeepSource’s integration with Vanta now includes Software Composition Analysis (SCA) alongside Static Application Security Testing (SAST) — giving security and compliance teams a unified view of risks across both first-party

🚨 We’ve officially made it to Times Square! 🚨 DeepSource Agents are now front and center in the world’s most iconic digital billboard space! What better way to celebrate than with a little extra visibility? Ship code fearlessly.

When we started DeepSource over six years ago, we focused on helping developers write cleaner code. But as we went deeper, one thing became clear: code security wasn’t just a part of the problem—it was the problem. Over time, our focus expanded from code quality to a much

👀 Did you spot the DeepSource truck around the RSA Conference last week?

DeepSource Agents is an important step in that direction: enabling developers and security teams to move fast, but also make sure they're always protected. Learn more:

Last Friday in San Francisco: We gathered an eclectic group of security leaders, CTOs, and founders to give them a peek at DeepSource Agents, our autonomous AI agents for code security. When over 40% of all new code written at most companies is AI-generated, the primary topic of

✨ Introducing, DeepSource Agents ✨

4/25 in SF: Hosting an intimate dinner with engg. leaders to talk about AI agents in security. We have folks coming from Google DeepMind, YC-backed AI companies, and Fortune 500s. DM me for an invite (~5 spots open).

🗓️ 4/25 in San Francisco: We're hosting an intimate gathering of founders, security leaders, and CTOs for a thought-provoking conversation around AI agents in security — and unveiling something radically new from DeepSource. Register: https://t.co/xAGB3tHtj5 (limited spots)

You can get started right away or talk to us if you're moving from traditional SCA tools. Sign up: https://t.co/xM14uXBhq0 Watch a demo:

Finally, DeepSource SCA is the only one on the market that's transparently priced — per target. Each combination of a manifest file (like package.json) and a lock file (like package-lock.json) counts as a target. All features are included in this price, bar none. There are no

3️⃣ Dynamic Risk. CVSS and EPSS scores for vulnerabilities do not account for your organization's context, and most AppSec teams find it difficult to work with their rigidity in figuring out which vulnerabilities are truly important in their scenario. We've invented a new

2️⃣ World's first multi-variate auto-remediation engine. Upgrading dependencies to fix vulnerabilities is tricky. Traditional SCA tools don't help you automatically create fixes. Those that do use a naïve approach—"here, upgrade to the latest version of the package." Upgrading

1️⃣ Industry-leading Reachability Analysis. We build a comprehensive AST-based call graph of your entire repository along with all its third-party dependencies. When we see a new vulnerability, our static analyzer starts with function calls right at the top of your code and

✨ Introducing, DeepSource SCA: Intelligent Supply Chain Security that helps you secure your open-source dependencies with best-in-class static analysis and Autofix™ AI. Learn more: https://t.co/i9avueKUSR DeepSource SCA is built for modern AppSec, with three key innovations: