Free
$0
- 50,000 packages / month
- Full detection engine
- PR verdicts + check status
- Plain English finding titles + actionable next step
- npm + PyPI artifact integrity comparison
Full detection depth on every plan.
Pro
For solo developers and small projects
$15/mo
- Everything in Free
- 250,000 packages / month
- GitHub App + Dashboard + scan history
- Per finding evidence snippets
- Multi line reasons + full remediation
- Package watchlists (50 packages)
- Saved reports + signed share URLs
Team
For teams that need shared policy, audit logs, and alerts
$10/user/mo
- Everything in Pro
- Unlimited packages
- Org level GitHub App enforcement with per seat scan attribution
- Custom policy (9 risk categories, strict / standard / audit presets) + sandbox routing for eligible packages
- Slack alerts on scan blocks
- Audit log (90 day retention)
- Org wide project inventory (500 package watchlist)
- Publish check audit (catches bundled secrets pre publish)
Enterprise
- Everything in Team
- Unlimited packages
- Self hosted deployment
- SSO / SAML integration
- SLA + dedicated support
Most tools charge per developer and gate advanced detection behind paid tiers. Dependency Guardian includes the full engine on every plan. You upgrade for volume, retention, team workflows, and support. Example: 50 person org pays $500/mo here vs $1,250+/mo elsewhere.