phylum-cli
« Back to VersTracker
Description:
Command-line interface for the Phylum API
Type: Formula  |  Tracked Since: Dec 28, 2025
Links: Homepage  |  @phylumsecurity  |  formulae.brew.sh
Category: Security
Tags: security devops developer-tools cli supply-chain
Install: brew install phylum-cli
About:
The Phylum CLI is a command-line interface that connects directly to the Phylum API, enabling developers to perform deep software supply chain risk analysis. It integrates seamlessly into CI/CD pipelines and local development workflows to scan dependencies for vulnerabilities, license violations, and other security risks before they enter production.
Key Features:
  • Automated dependency risk analysis and scoring
  • CI/CD integration for policy enforcement
  • Support for multiple package ecosystems (npm, PyPI, Maven, etc.)
  • Detailed vulnerability and license reporting
Use Cases:
  • Scanning project dependencies for known security vulnerabilities in CI/CD pipelines
  • Enforcing organizational security policies before code deployment
  • Auditing existing projects for supply chain risks
Alternatives:
  • Snyk CLI – Snyk offers broader platform features including container scanning, while Phylum focuses specifically on deep package dependency analysis.
  • OWASP Dependency-Check – An open-source alternative that identifies known vulnerabilities, but lacks Phylum's proprietary risk scoring and machine learning analysis.
Version History
Detected Version Rev Change Commit
Dec 11, 2024 3:18am 0 VERSION_BUMP 8cc50d09
Dec 11, 2024 2:33am 0 VERSION_BUMP f31cab6c
Oct 11, 2024 6:58pm 0 VERSION_BUMP 0592bef5
Oct 9, 2024 7:41pm 0 VERSION_BUMP c3f89327
Oct 9, 2024 6:49pm 0 VERSION_BUMP 51f9d632