Reviewing Third-Party Libraries Before Adding to Codebase

The author of the post explains that they have so far reviewed third-party libraries and the companies that distribute them before adding them to the codebase. They mention that the codebases are scanned dynamically once a month and statically with every code push. The author wonders if there are any tools or websites to check a library before adding it, focusing mainly on Angular and C# libraries and plugins.