Safety v3.5.1 is now available. Upgrade using "pip install -U safety"
Safety Firewall
LogoLogo
Safety PlatformResearchSign Up
  • Introduction to Safety
  • Safety Firewall
    • Introduction to Safety Firewall
    • Installation and Configuration
      • Uninstalling Firewall
    • Using Firewall
      • Working with Codebases
      • Firewall Monitoring and Management
      • Firewall Policy Management
      • Troubleshooting
  • SAFETY CLI
    • Introduction to Safety CLI Vulnerability Scanning
      • Quick Start Guide
      • Migrating from Safety CLI 2.x to Safety CLI 3.x
    • Installation and Authentication
    • Scanning for Vulnerable and Malicious Packages
      • Viewing Scan Results
      • Available Commands and Inputs
      • Scanning in CI/CD
      • Securing Development Environments
      • License Scanning
      • Exit Codes
      • Scanning in Production
    • Safety Telemetry
  • Vulnerability Remediation
    • Applying Fixes
  • Integration
    • Securing Git Repositories
      • GitHub
        • GitHub Actions
      • GitLab
      • BitBucket
      • Azure DevOps
      • Git Post-Commit Hooks
    • Pipenv
    • Docker Containers
  • Administration
    • Safety Policy Files
    • Project Policies
  • Output
    • Output Options and Recommendations
    • JSON Output
    • SBOM Output
    • HTML Output
    • Detecting Vulnerabilities and Sharing Results via Email
  • Support
    • Support
    • Invalid API Key Error
    • Headless Authentication
    • Implementation Support
    • Global proxy and identity configuration
    • Using Safety in Conda Environments
  • Miscellaneous
    • Understanding Vulnerability Scoring Systems: CVSS and EPSS
    • Release Notes
      • Breaking Changes in Safety 3
    • Research and Blog
    • Changelogs
    • Trust Center
    • Terms of Service
    • Safety 2.x Documentation
Powered by GitBook
LogoLogo

Safety Platform

  • Sign Up
  • Login

Research

  • Security Research & Blog

Resources

  • GitHub Action
  • GitHub

© Safety CLI Cybersecurity Inc.

On this page
  • What is Safety Firewall?
  • Key Benefits
  • How Safety Firewall Works
  • Who Benefits from Safety Firewall?

Was this helpful?

  1. Safety Firewall

Introduction to Safety Firewall

PreviousIntroduction to SafetyNextInstallation and Configuration

Last updated 1 month ago

Was this helpful?

What is Safety Firewall?

Safety Firewall is a new approach to software supply chain security that prevents vulnerable and malicious packages from entering your systems before they can cause harm. Safety Firewall intercepts package installation requests, analyzes them against Safety's comprehensive vulnerability and malicious package database, and either approves, warns about, or blocks installations based on your organization's security policies.

Key Benefits

  • Prevention-First Security: Stop threats before they enter your system instead of detecting them after installation

  • Developer-Friendly Protection: Seamlessly integrates with existing workflows and package managers (pip, poetry, and more)

  • Comprehensive Coverage: Protects against known vulnerabilities, malicious packages, typosquatting, and other supply chain risks

  • Real-Time Protection: Analyzes every package installation request as it happens

  • Organizational Visibility: Provides insights into what packages are being installed, where, and by whom across your organization'

How Safety Firewall Works

  1. Safety Firewall creates secure aliases for your package managers (pip, poetry, etc.)

  2. When a package installation is requested, Safety Firewall intercepts the request.

  3. The package is analyzed in real-time against Safety's comprehensive vulnerability and malicious package database.

  4. Based on your policies, the package is either approved, flagged with a warning, or blocked.

  5. All installation activity is logged to Safety Platform for visibility and audit purposes.

Safety Firewall protects not only code projects but also development environments and systems that fall outside of version-controlled codebases. This means even ad-hoc package installations by developers or data scientists are protected.

Who Benefits from Safety Firewall?

  • Security Teams: Gain confidence that supply chain threats are being prevented, not just detected

  • DevOps Teams: Ensure consistent security policies across all environments without disrupting workflows

  • Developers: Stay protected without changing how you work or adding security overhead

  • Compliance Teams: Generate comprehensive audit logs of all package installations across the organization

Page cover image