Defense / Threat Intelligence
See where your software actually comes from
Modern defense systems are assembled from thousands of open-source components maintained by contributors across the globe. Alethe Labs traces the country of origin of every contributor behind a dependency and renders it as live geospatial intelligence — so foreign influence in your supply chain is visible, not assumed.
Live Threat Map
kubernetes/kubernetes
0 origins
0 geolocated
Arcs converge on defended asset · Washington, D.C.
Country of Origin
How The Intelligence Is Built
Provenance-aware dependency graph
Every package resolves to the humans and nations that produced it.
Contributor attribution
We map the maintainers and top contributors behind each dependency to their declared country of origin.
Transitive depth
Provenance follows the full transitive graph, not just direct dependencies.
Foreign-influence signals
Concentration of control in adversarial jurisdictions is surfaced as a risk signal, not a guess.
Threat-origin correlation
Geospatial context turns a flat SBOM into actionable intelligence.
Origin clustering
Contributors are clustered by nation-state and plotted against the defended asset.
Anomaly highlighting
Sudden shifts in maintainer geography between releases are flagged for review.
Watchlist alignment
Origins are correlated against ITAR, EAR, and program-specific watchlists.
Continuous supply-chain watch
Intelligence is a feed, not a one-time report.
Release-time re-trace
Each new dependency version re-triggers contributor geolocation and scoring.
Evidence-linked
Every origin determination is linked to the verifiable source it was derived from.
Air-gap ready
The trace pipeline runs fully disconnected, mirroring registries inside the enclave.
Know your supply chain before an adversary does
Pair geospatial contributor intelligence with live vulnerability and license scanning to get a complete picture of every dependency entering your enclave.