Harden OSS

Harden OSS is the minimal open-source subset of the Harden product. It focuses on static analysis, deterministic dependency locking, Dockerfile generation, and SBOM + vulnerability reporting for Python apps.

If you’re evaluating Enterprise features, see Compare Editions.

Quickstart

harden analyze ./myapp
harden lock ./myapp
harden generate ./myapp --fail-on-critical

Outputs

.harden/state/harden-report.json
requirements.lock
.harden/Dockerfile
.harden/sbom.json

What OSS Does (and Doesn’t)

Included

analyze: static risk report + entry command inference
lock: reproducible dependency lockfile
generate: Dockerfile-only + SBOM + optional fail-on-critical

Not included

runtime profiling or policy tightening
deployment artifacts (K8s, CI/CD, auth, etc.)
enterprise buyer workflows

Quickstart​

What OSS Does (and Doesn’t)​

Quickstart

What OSS Does (and Doesn’t)