🐍 🔍 GuardDog is a CLI tool to Identify malicious PyPI and npm packages
An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages 🔥
Detect Glassworm & trojan source attacks that employ unicode bidi attacks to inject malicious code
This open-source project tracks RED-LILI's activity over time as there are evidence the actor is still active. All information provided here is intended for research purposes.
Project Aura: Security auditing and code introspection
🛡️ Advanced NPM supply chain attack detection tool - Specialized in detecting Shai-Hulud compromise indicators with beautiful CLI interface and automated security reporting
Unofficial tools for blocking malicious packages by integrating Checkmarx MPIAPI into CI/CD and similar systems
Hackers attacks intercepted
Add a description, image, and links to the malicious-packages topic page so that developers can more easily learn about it.
To associate your repository with the malicious-packages topic, visit your repo's landing page and select "manage topics."