# SafeDep Documentation ## Docs - [API](https://docs.safedep.io/api-reference/introduction.md): Getting started with SafeDep API - [Bitbucket Pipes](https://docs.safedep.io/apps/bitbucket/bitbucket-pipes.md): Native Bitbucket Cloud integration for SafeDep - [GitHub App](https://docs.safedep.io/apps/github/overview.md): SafeDep GitHub App - [GitLab Dependency Scanning](https://docs.safedep.io/apps/gitlab/overview.md): Native GitLab integration for dependency security scanning with vet - [Model Context Protocol Server](https://docs.safedep.io/apps/mcp/overview.md): SafeDep cloud hosted MCP server - [Apps](https://docs.safedep.io/apps/overview.md): SafeDep App Integrations - [Authentication](https://docs.safedep.io/cloud/authentication.md): Understand SafeDep Cloud authentication methods and API access patterns - [Cloud FAQ](https://docs.safedep.io/cloud/faq.md): Frequently asked questions about SafeDep Cloud authentication and usage - [Malware Analysis](https://docs.safedep.io/cloud/malware-analysis.md): Detect malicious packages in your dependencies using SafeDep Cloud's advanced code analysis capabilities - [SafeDep Cloud Overview](https://docs.safedep.io/cloud/overview.md): Unified platform for open source software supply chain security - [Malicious Package Exclusions](https://docs.safedep.io/cloud/package-exclusions.md): Manage package exclusions for malicious package analysis in SafeDep Cloud - [Quick Start](https://docs.safedep.io/cloud/quickstart.md): Get started with SafeDep Cloud in under 10 minutes - [Cloud Sync](https://docs.safedep.io/cloud/sync.md): Synchronize vet scan data and policy violations with SafeDep Cloud for centralized analysis, query and reporting - [Community](https://docs.safedep.io/community.md): Join the SafeDep and vet user community for support and discussions - [FAQ](https://docs.safedep.io/faq.md): Frequently asked questions about using vet and troubleshooting common issues - [Welcome to SafeDep Documentation](https://docs.safedep.io/introduction.md): Secure your open source software supply chain with SafeDep - [Why PMG?](https://docs.safedep.io/pmg/concepts/why-pmg.md): Understanding the need for protection against malicious packages - [PMG Quickstart](https://docs.safedep.io/pmg/quickstart.md): Get started with SafeDep PMG - Package Manager Guard that protects against malicious open source packages - [PMG Updates](https://docs.safedep.io/pmg/updates.md): New updates related to Package Manager Guard (PMG) - [Build Your Own Queries](https://docs.safedep.io/vet/advanced/build-your-own-queries.md): Speed up filtering and reporting by working with enriched JSON data dumps - [Exceptions Management](https://docs.safedep.io/vet/advanced/exceptions.md): Manage false positives and acceptable risks with time-bound exceptions - [Filtering](https://docs.safedep.io/vet/advanced/filtering.md): Use CEL expressions to filter and analyze dependencies with flexible criteria - [Path Exclusion](https://docs.safedep.io/vet/advanced/path-exclusion.md): Exclude specific directories and files from security scans using pattern matching - [Policy as Code](https://docs.safedep.io/vet/advanced/policy-as-code.md): Automate security policy enforcement with CEL-based rules - [Why vet?](https://docs.safedep.io/vet/concepts/why-vet.md): Understanding the need for automated open source dependency vetting - [AI Governance](https://docs.safedep.io/vet/guides/ai-governance.md): Gain visibility into AI usage across your codebase and developer environments - [AI Tools Discovery](https://docs.safedep.io/vet/guides/ai-tools-discovery.md): Discover AI coding agents, MCP servers, CLI tools, and IDE extensions across developer machines and project repositories - [Code Analysis](https://docs.safedep.io/vet/guides/code-analysis.md): Analyze code and dependency usage patterns with vet's code analysis features - [CycloneDX SBOM Generation](https://docs.safedep.io/vet/guides/cyclonedx-sbom.md): Generate comprehensive Software Bill of Materials (SBOM) with security metadata using vet - [DefectDojo Integration](https://docs.safedep.io/vet/guides/defect-dojo-integration.md): Integrate vet with DefectDojo for centralized vulnerability tracking and management - [Dependency Inventory](https://docs.safedep.io/vet/guides/dependency-inventory.md): Generate accurate dependency inventories using package managers and SBOM tools - [Dependency Usage Identification](https://docs.safedep.io/vet/guides/dependency-usage-identification.md): Identify which dependencies are actually used in your code using static code analysis - [GitHub Code Scanning](https://docs.safedep.io/vet/guides/github-code-scanning.md): Integrate vet with GitHub Actions and Code Scanning for automated security alerts - [Insights API with TypeScript](https://docs.safedep.io/vet/guides/insights-api-using-typescript.md): Build applications that leverage SafeDep Insights API using TypeScript and ConnectRPC - [Shadow AI in Code](https://docs.safedep.io/vet/guides/shadow-ai-detection.md): Detect AI and LLM SDK usage in your codebase using static code analysis and generate an SBOM with AI component evidence - [Terraform Supply Chain Audit](https://docs.safedep.io/vet/guides/terraform-supply-chain-audit.md): Audit Terraform provider inventory for supply chain risks using SafeDep Cloud - [vet Quick Start](https://docs.safedep.io/vet/quickstart.md): Get started with vet in under 5 minutes - [Why xBom](https://docs.safedep.io/xbom/concepts/why-xbom.md): Why xBom - Open Source Bill of Materials (BOM) generator enriched with AI, SaaS, Crypto. - [xBOM Quickstart](https://docs.safedep.io/xbom/quickstart.md): Get started with SafeDep xBom - Open Source Bill of Materials (BOM) generator enriched with AI, SaaS, Crypto. ## OpenAPI Specs - [openapi](https://docs.safedep.io/api-reference/openapi.json) ## Optional - [GitHub](https://github.com/safedep/vet) - [Discord](https://discord.gg/kAGEj25dCn) - [Website](https://safedep.io)