illustria provides a solution that can be deployed in the cloud or on premise and thoroughly vets the open-source SW package. This includes solving for attacks such as typo-squatting, dependency confusion, virus deployment, and provides traditional SW composition analysis. The solution not only enhances code security, but also eases compliance, SBOM, and licensing challenges.