Stop Supply Chain Attacks: GuardDog Scans Your Dependencies for Hidden Malware
π Quick Summary:
GuardDog is a command-line interface tool designed to detect malicious packages across various ecosystems including PyPI, npm, Go, GitHub Actions, and VSCode extensions. It employs both source code analysis using Semgrep rules and p...
github-open-source.hashnode.dev3 min read