This product was not featured by Product Hunt yet. It will not be visible on their landing page and won't be ranked (cannot win product of the day regardless of upvotes).
Product upvotes vs the next 3
Waiting for data. Loading
Product comments vs the next 3
Waiting for data. Loading
Product upvote speed vs the next 3
Waiting for data. Loading
Product upvotes and comments
Waiting for data. Loading
Product vs the next 3
Loading
ScanReq
Find outdated deps and CVEs across 8 ecosystems in VS Code
ScanReq scans your project for security vulnerabilities and outdated packages directly inside VS Code. It checks versions against public registries in real time and detects known CVEs via OSV.dev. Supports Python, Node.js, Rust, Go, PHP, Ruby, and Java (Maven & Gradle). Free plan covers all ecosystems with full CVE detection. Pro ($19 one-time) adds cross-version compatibility analysis and risk-phased update planning.
Hey Product Hunt! 👋
I built ScanReq because I was tired of checking dependencies manually. To prove it works, I scanned repos you've probably used:
- rails/rails → 89 outdated packages, 7 CVEs (5 HIGH on rack)
- cli/cli (GitHub CLI) → 49 outdated, 177 Go modules parsed
- veloren/veloren (Rust) → 28 outdated, 4 CVEs
To verify the results weren't just noise, I manually checked every dependency on veloren (~60 packages) — going to crates.io for versions and osv.dev for CVEs one by one. It took me about 4 hours. ScanReq does it in 8 seconds.
If you don't trust the results, pick any CVE ID from a scan and paste it into osv.dev. The data is all public.
The free tier covers everything most developers need. Pro ($19, one-time payment) adds compatibility analysis and safe update paths for teams that need to plan upgrades carefully.
Happy to answer any questions!
About ScanReq on Product Hunt
“Find outdated deps and CVEs across 8 ecosystems in VS Code”
ScanReq was submitted on Product Hunt and earned 4 upvotes and 1 comments, placing #142 on the daily leaderboard. ScanReq scans your project for security vulnerabilities and outdated packages directly inside VS Code. It checks versions against public registries in real time and detects known CVEs via OSV.dev. Supports Python, Node.js, Rust, Go, PHP, Ruby, and Java (Maven & Gradle). Free plan covers all ecosystems with full CVE detection. Pro ($19 one-time) adds cross-version compatibility analysis and risk-phased update planning.
On the analytics side, ScanReq competes within Open Source, Developer Tools and Security — topics that collectively have 585.2k followers on Product Hunt. The dashboard above tracks how ScanReq performed against the three products that launched closest to it on the same day.
Who hunted ScanReq?
ScanReq was hunted by Jorge. A “hunter” on Product Hunt is the community member who submits a product to the platform — uploading the images, the link, and tagging the makers behind it. Hunters typically write the first comment explaining why a product is worth attention, and their followers are notified the moment they post. Around 79% of featured launches on Product Hunt are self-hunted by their makers, but a well-known hunter still acts as a signal of quality to the rest of the community. See the full all-time top hunters leaderboard to discover who is shaping the Product Hunt ecosystem.
For a complete overview of ScanReq including community comment highlights and product details, visit the product overview.
Jorge