Safety v3.5.1 is now available. Upgrade using "pip install -U safety"
Safety Firewall
LogoLogo
Safety PlatformResearchSign Up
  • Introduction to Safety
  • Safety Firewall
    • Introduction to Safety Firewall
    • Installation and Configuration
      • Uninstalling Firewall
    • Using Firewall
      • Working with Codebases
      • Firewall Monitoring and Management
      • Firewall Policy Management
      • Troubleshooting
  • SAFETY CLI
    • Introduction to Safety CLI Vulnerability Scanning
      • Quick Start Guide
      • Migrating from Safety CLI 2.x to Safety CLI 3.x
    • Installation and Authentication
    • Scanning for Vulnerable and Malicious Packages
      • Viewing Scan Results
      • Available Commands and Inputs
      • Scanning in CI/CD
      • Securing Development Environments
      • License Scanning
      • Exit Codes
      • Scanning in Production
    • Safety Telemetry
  • Vulnerability Remediation
    • Applying Fixes
  • Integration
    • Securing Git Repositories
      • GitHub
        • GitHub Actions
      • GitLab
      • BitBucket
      • Azure DevOps
      • Git Post-Commit Hooks
    • Pipenv
    • Docker Containers
  • Administration
    • Safety Policy Files
    • Project Policies
  • Output
    • Output Options and Recommendations
    • JSON Output
    • SBOM Output
    • HTML Output
    • Detecting Vulnerabilities and Sharing Results via Email
  • Support
    • Support
    • Invalid API Key Error
    • Headless Authentication
    • Implementation Support
    • Global proxy and identity configuration
    • Using Safety in Conda Environments
  • Miscellaneous
    • Understanding Vulnerability Scoring Systems: CVSS and EPSS
    • Release Notes
      • Breaking Changes in Safety 3
    • Research and Blog
    • Changelogs
    • Trust Center
    • Terms of Service
    • Safety 2.x Documentation
Powered by GitBook
LogoLogo

Safety Platform

  • Sign Up
  • Login

Research

  • Security Research & Blog

Resources

  • GitHub Action
  • GitHub

© Safety CLI Cybersecurity Inc.

On this page
  • Key Features
  • Supported Ecosystems

Was this helpful?

  1. SAFETY CLI

Introduction to Safety CLI Vulnerability Scanning

Vulnerability Scanning for Secure Python Development

PreviousTroubleshootingNextQuick Start Guide

Last updated 21 days ago

Was this helpful?

Safety CLI is a Python dependency vulnerability scanner designed to enhance software supply chain security by detecting packages with known vulnerabilities and malicious packages in local development environments, CI/CD, and production systems.

Safety CLI can be and provides for of detected vulnerabilities.

Leveraging the industry's most comprehensive database of vulnerabilities and malicious packages, Safety CLI Scanner allows teams to detect vulnerabilities at every stage of the software development lifecycle.

Key Features

  • Versatile, comprehensive dependency security scanning for Python packages.

  • Leverages Safety DB, the most comprehensive vulnerability data available for Python.

  • Clear output with detailed recommendations for vulnerability remediation.

  • Automatically updates requirements files to secure versions of dependencies where available, guided by your project's policy settings.

  • Scanning of individual requirements files and project directories or system-wide scans on developer machines, CI/CD pipelines, and Production systems to detect vulnerable or malicious dependencies.

  • JSON, SBOM, HTML and text output.

  • Easy integration with CI/CD pipelines, including GitHub Actions.

  • Enterprise Ready: Safety CLI can be deployed to large teams with complex project setups with ease, on-premise or as a SaaS product.

Integrating into your existing workflow is easy, and it is possible to scan the full software development lifecycle, from developer machines to CI/CD pipelines and Production systems.

Safety CLI is backed by our industry-leading vulnerability data and recommends fixes for vulnerabilities as they are detected.

Versatile, comprehensive dependency security scanning

‍Safety can be deployed in minutes, seamlessly integrates with existing workflows, and allows developers to make informed security-based decisions without disrupting productivity.

We transitioned from the free Snyk scanning to Safety because of the recommendation of one of our lead developers. And we have loved it.

Sean Howard - CEO, Flightpath

Supported Ecosystems

Safety currently supports Python only but will expand to support JavaScript and Java in H2 2025.

deployed in minutes
clear, actionable recommendations
remediation
Safety CLI, Version 3.0.0
Page cover image