From 53ddcaa1dd4b3b708808f3c56ec234403b24e0d4 Mon Sep 17 00:00:00 2001
From: Shyngys Shynbolatov <shyngys.shynbolatov@gmail.com>
Date: Wed, 19 Nov 2025 03:08:32 +0400
Subject: [PATCH] Add NPM Scan to security tools list

Added NPM Scan as a resource for npm package security.
---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 5467d34..0d897f6 100644
--- a/README.md
+++ b/README.md
@@ -227,6 +227,7 @@ Testing is an essential element of a DevSecOps program because it helps to prepa
 * [ShiftLeft Scan](https://slscan.io)
 * [Snyk](https://snyk.io)
 * [SourceClear](https://www.sourceclear.com)
+* [NPM Scan](https://npmscan.com) - Real-time npm package malware scanner and supply-chain analyzer. Detects malicious scripts, obfuscation, hidden installs, abandoned maintainers, and suspicious behavior.
 
 
 ## Alerting