GitHub - https://github.com/zakariazakia15-jpg/EagleEye

Meet EagleEye: I built an AI tool to expose hidden malicious characters in dependencies. Hello r/CyberSecurity. As supply chain attacks grow more complex, I became obsessed with 'trojan source' and homoglyph attacks—where invisible zero-width or lookalike characters subvert code reviews. I'm excited to share EagleEye, my new open-source Node.js scanner designed to combat this. GitHub Repository: https://github.com/zakariazakia1... EagleEye doesn't just do CVE lookups. Its core is an AI-driven, secure isolated-vm sandbox that mocks code execution to analyze behavioral deviations. It focuses specifically on dependency trees, looking for: Trojan Source homoglyphs (e.g., lookalike cyrillic chars) Zero-width character insertion Suspicious temporary email risk profiling Full dependency behavioral emulation I've released this with a multilingual UI (EN, FR, AR). I'd love this community's feedback, especially on improving the emulation sandbox and identifying new attack vectors. Pull requests and Stars are welcome on GitHub! Link: https://github.com/zakariazakia1...