Dependency Guardian - Supply chain protection that blocks malware at install
by•
Static supply chain scanner catches npm & PyPI attack patterns CVE databases miss: install scripts, credential theft, child process spawning, network exfil. 100 detectors, sandbox routing for eligible packages, GitHub App + CLI. Free plan.

Replies