---
description: Discover the benefits and disadvantages of npmscan.  Learn the software price, see the description, and read the most helpful reviews for UK business users. 
image: https://gdm-localsites-assets-gfprod.imgix.net/images/capterra/og_logo-e5a8c001ed0bd1bb922639230fcea71a.png?auto=format%2Cenhance%2Ccompress
title: npmscan Pricing, Cost & Reviews - Capterra UK 2026
---

Breadcrumb: [Home](/) > [Static Application Security Testing (SAST) Software](/directory/32818/static-application-security-testing-%28sast%29/software) > [npmscan](/software/1083682/npmscan)

# npmscan

Canonical: https://www.capterra.co.uk/software/1083682/npmscan

> npmscan secures Node.js projects from supply chain attacks by detecting malware and vulnerabilities in npm packages.
> 
> Verdict: Rated \*\*\*\* by 0 users. Top-rated for **Overall Quality**.

-----

## Overview

### Who Uses npmscan?

npmscan is used by Node.js developers, security engineers, DevOps professionals, software architects, and cryptocurrency projects.

## About the vendor

- **Company**: BlockHacks

## Commercial Context

- **Starting Price**: US$199.00
- **Pricing model**: Usage Based (Free version available) (Free Trial)
- **Target Audience**: Self Employed, 2–10, 11–50, 51–200, 201–500, 501–1,000, 1,001–5,000, 5,001–10,000, 10,000+
- **Deployment & Platforms**: Cloud, SaaS, Web-based
- **Supported Languages**: English
- **Available Countries**: Angola, Argentina, Aruba, Australia, Austria, Bahamas, Bahrain, Belgium, Bermuda, Bosnia & Herzegovina, Botswana, Brazil, Bulgaria, Canada, Cayman Islands, Chile, China, Colombia, Costa Rica, Croatia and 68 more

## Features

- API
- Application Security
- Real-Time Analytics
- Vulnerability Scanning

## Support Options

- Email/Help Desk
- FAQs/Forum
- Knowledge Base
- Phone Support
- 24/7 (Live rep)

## Category

- [Static Application Security Testing (SAST) Software](https://www.capterra.co.uk/directory/32818/static-application-security-testing-%28sast%29/software)

## Alternatives

1. [Acunetix](https://www.capterra.co.uk/software/171379/acunetix) — 4.4/5 (35 reviews)
2. [JFrog Advanced Security](https://www.capterra.co.uk/software/1084389/JFrog-Advanced-Security) (0 reviews)
3. [Aikido Security](https://www.capterra.co.uk/software/1060185/aikido) — 4.7/5 (6 reviews)
4. [GitHub](https://www.capterra.co.uk/software/129067/github) — 4.8/5 (6155 reviews)
5. [GitLab](https://www.capterra.co.uk/software/159806/gitlab) — 4.6/5 (1215 reviews)

## Links

- [View on Capterra](https://www.capterra.co.uk/software/1083682/npmscan)

## This page is available in the following languages

| Locale | URL |
| en | <https://www.capterra.com/p/10035149/npmscan/> |
| en-AE | <https://www.capterra.ae/software/1083682/npmscan> |
| en-AU | <https://www.capterra.com.au/software/1083682/npmscan> |
| en-CA | <https://www.capterra.ca/software/1083682/npmscan> |
| en-GB | <https://www.capterra.co.uk/software/1083682/npmscan> |
| en-IE | <https://www.capterra.ie/software/1083682/npmscan> |
| en-IL | <https://www.capterra.co.il/software/1083682/npmscan> |
| en-IN | <https://www.capterra.in/software/1083682/npmscan> |
| en-NZ | <https://www.capterra.co.nz/software/1083682/npmscan> |
| en-SG | <https://www.capterra.com.sg/software/1083682/npmscan> |
| en-ZA | <https://www.capterra.co.za/software/1083682/npmscan> |

-----

## Structured Data

<script type="application/ld+json">
  {"@context":"https://schema.org","@graph":[{"name":"Capterra UK","address":{"@type":"PostalAddress","addressLocality":"Egham","addressRegion":"ENG","postalCode":"TW20 9AH","streetAddress":"Tamesis, The Glanty, Staines-upon-Thames Egham TW20 9AH United Kingdom"},"description":"Capterra UK helps millions of people find the best business software. With software reviews, ratings, infographics, and the most comprehensive list of business software.","email":"info@capterra.co.uk","url":"https://www.capterra.co.uk/","logo":"https://dm-localsites-assets-prod.imgix.net/images/capterra/logo-a9b3b18653bd44e574e5108c22ab4d3c.svg","@type":"Organization","@id":"https://www.capterra.co.uk/#organization","parentOrganization":"Gartner, Inc.","sameAs":["https://twitter.com/Capterra","https://www.facebook.com/Capterra/","https://www.linkedin.com/company/capterra/","https://www.youtube.com/channel/UCEt7vQSPiPlPAblHdhJAqnA"]},{"name":"npmscan","description":"npmscan is a security tool that protects Node.js projects from supply chain attacks by detecting malware-like behavior in npm packages. It identifies crypto-drainers and obfuscated scripts through lightweight static analysis and advanced heuristics, helping to uncover emerging threats including non-CVE malware and zero-day vulnerabilities.\nThe tool features real-time threat intelligence that tracks major security incidents in the npm ecosystem. npmscan prioritizes user privacy with a no-installation approach that requires no login credentials or API keys. The system does not store source code or any sensitive data during the scanning process.\nnpmscan focuses specifically on identifying malicious behavior patterns in packages, complementing traditional vulnerability scanners. The privacy-first design and specialized detection capabilities make it effective for identifying security risks in Node.js dependencies that might otherwise remain undetected.","image":"https://gdm-catalog-fmapi-prod.imgix.net/ProductScreenshot/ad3aedc7-9dc3-4257-8d9c-508e78d0efc7.jpeg","url":"https://www.capterra.co.uk/software/1083682/npmscan","@type":"SoftwareApplication","@id":"https://www.capterra.co.uk/software/1083682/npmscan#software","applicationCategory":"BusinessApplication","publisher":{"@id":"https://www.capterra.co.uk/#organization"},"offers":{"price":"199","@type":"Offer","priceCurrency":"USD"},"operatingSystem":"Cloud"},{"@type":"FAQPage","@id":"https://www.capterra.co.uk/software/1083682/npmscan#faqs","mainEntity":[{"name":"What is npmscan?","@type":"Question","acceptedAnswer":{"text":"npmscan is a security tool that protects Node.js projects from supply chain attacks by detecting malware-like behavior in npm packages. It identifies crypto-drainers and obfuscated scripts through lightweight static analysis and advanced heuristics, helping to uncover emerging threats including non-CVE malware and zero-day vulnerabilities.The tool features real-time threat intelligence that tracks major security incidents in the npm ecosystem. npmscan prioritizes user privacy with a no-installation approach that requires no login credentials or API keys. The system does not store source code or any sensitive data during the scanning process.npmscan focuses specifically on identifying malicious behavior patterns in packages, complementing traditional vulnerability scanners. The privacy-first design and specialized detection capabilities make it effective for identifying security risks in Node.js dependencies that might otherwise remain undetected.","@type":"Answer"}},{"name":"Who Uses npmscan?","@type":"Question","acceptedAnswer":{"text":"npmscan is used by Node.js developers, security engineers, DevOps professionals, software architects, and cryptocurrency projects.","@type":"Answer"}}]},{"@type":"BreadcrumbList","itemListElement":[{"name":"Home","position":1,"item":"/","@type":"ListItem"},{"name":"Static Application Security Testing (SAST) Software","position":2,"item":"/directory/32818/static-application-security-testing-%28sast%29/software","@type":"ListItem"},{"name":"npmscan","position":3,"item":"/software/1083682/npmscan","@type":"ListItem"}],"@id":"https://www.capterra.co.uk/software/1083682/npmscan#breadcrumblist"}]}
</script>