Projects in Awesome Lists tagged with package-security
A curated list of projects in awesome lists tagged with package-security .
https://github.com/theupdateframework/tuf-js
JavaScript implementation of The Update Framework (TUF)
Last synced: 12 Apr 2025
https://github.com/edoardottt/depsdev
CLI client (and Golang module) for deps.dev API. Free access to dependencies, licenses, advisories, and other critical health and security signals for open source package versions.
blue-team cargo defensive-security dependency-management dependency-scanning dependency-security go go-module golang-module hacktoberfest maven npm nuget package-security pypi sbom sbom-generator security supply-chain supply-chain-management
Last synced: 14 Apr 2026
https://github.com/github/artifact-attestations-workflows
Demo repository showcasing how to use reusable workflows to build artifact attestations
Last synced: 11 Oct 2025
https://github.com/github/artifact-attestations-opa-provider
OPA Gatekeeper provider for GitHub Artifact Attestations
Last synced: 11 May 2025
https://github.com/01tek/npm-security-score
World-class security standard for npm packages. Automated threat detection, supply chain analysis, and 0-100 security scores. Because in 2025, we can do better than the Wild West
ci-cd devsecops npm package-security security security-tools supply-chain vulnerability-scanner
Last synced: 13 Jan 2026
https://github.com/weorbitant/search-github-org-for-nodejs-deps
Search all repositories across a github organization and looks for nodejs dependencies
node nodejs npm npm-security package-security
Last synced: 17 Apr 2026
https://github.com/z8run/aegis
Supply-chain security scanner for npm packages. Detect malicious code, typosquatting, and compromised dependencies before you install them.
cli cve developer-tools devsecops malware-detection npm npm-audit npm-security package-security rust sarif security static-analysis supply-chain tree-sitter typosquatting vulnerability-scanner
Last synced: 04 Apr 2026
https://github.com/josedacosta/shai-hulud-detector
🛡️ Advanced NPM supply chain attack detection tool - Specialized in detecting Shai-Hulud compromise indicators with beautiful CLI interface and automated security reporting
cli-tool crypto-stealer cybersecurity devsec infosec malware-detection npm npm-security package-security security security-scanner shai-hulud supply-chain threat-detection typescript vulnerability-detection
Last synced: 18 Apr 2026
https://github.com/isaacmg00/amps
package scanner for Arch Linux based systems
arch-linux linux package-security pacman python
Last synced: 11 Apr 2026
https://github.com/nigerbartus/shai-hulud-2.0-detector
🛡️ Guard your projects against the Shai-Hulud 2.0 npm supply chain attack with our secure detection tool for safer development.
credential-theft devsecops malware-detection nodejs npm open-source-security package-security sarif sarif-report security sha1-hulud shai-hulud shai-hulud-attack shai-hulud2 shai-hulud2-detector shai-hulud2-inspector supply-chain-security vulnerability-scanner
Last synced: 13 Apr 2026
https://github.com/krikera/secure-npm
Security scanner for Node.js projects with AI-powered vulnerability detection and package recommendations
ai-powered cli dependency-checker nodejs npm package-security security vulnerability-scanners
Last synced: 02 Mar 2026
