Giters
Ossillate Inc. (ossillate-inc)

Ossillate Inc.

ossillate-inc

Geek Repo

We stop software supply chain attacks

Location:United States of America

Home Page:https://ossillate.com

Twitter:@ossillate_inc

Github PK Tool:Github PK Tool

Ossillate Inc.'s repositories

packj

Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

Language:PythonLicense:AGPL-3.0Stargazers:621Issues:10Issues:29

packj-github-action

Packj audits pull requests for malicious/risky open-source deps

Stargazers:10Issues:2Issues:1

packj-github-action-demo

This test repo demos usage of Packj.dev GitHub Action to flag risky devs

License:Apache-2.0Stargazers:2Issues:2Issues:3

Frelatage

The Python Fuzzer that the world deserves 🐍

Language:PythonLicense:MITStargazers:1Issues:1Issues:0

confused

Tool to check for dependency confusion vulnerabilities in multiple package management systems

Language:GoLicense:MITStargazers:0Issues:1Issues:0

exploits

exploits and proof-of-concept vulnerability demonstration files from the team at Hacker House

Language:CLicense:NOASSERTIONStargazers:0Issues:2Issues:0

maloss

Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages

Language:JavaLicense:MITStargazers:0Issues:2Issues:0

osspolice

Identifying Open-Source License Violation and 1-day Security Risk at Large Scale

Language:PythonLicense:GPL-3.0Stargazers:0Issues:2Issues:0

packj-npm

packj-npm

Language:TypeScriptLicense:MITStargazers:0Issues:2Issues:0

pypi-bad

Bad packages from the pypi repository

Language:PythonStargazers:0Issues:1Issues:0

pypi-scan

Scan pypi for typosquatting

Language:PythonLicense:Apache-2.0Stargazers:0Issues:2Issues:0

pypi_malware

PyPI malware packages

Language:PythonLicense:UnlicenseStargazers:0Issues:2Issues:0

sinopia

Private npm repository server

Language:JavaScriptStargazers:0Issues:1Issues:0

software-supply-chain-compromises

A dataset of software supply chain compromises. Please help us maintain it!

License:CC0-1.0Stargazers:0Issues:2Issues:0

Symbolica

Symbolica's open-source symbolic execution engine.

Language:C#License:MITStargazers:0Issues:1Issues:0

tag-security

🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!

Language:ShellLicense:NOASSERTIONStargazers:0Issues:1Issues:0

packagedna

This tool gives developers, researchers and companies the ability to analyze software packages of different programming languages that are being or will be used in their codes, providing information that allows them to know in advance if this library complies with processes. secure development, if currently supported, possible backdoors (malicious embedded code), typosquatting analysis, the history of versions and reported vulnerabilities (CVEs) of the package.

Language:PythonLicense:MITStargazers:0Issues:1Issues:0

packj-circleci-orb

Packj CircleCI Orb

Stargazers:0Issues:2Issues:0

packj-gitlab-runner

Packj GitLab Runner

Stargazers:0Issues:2Issues:0

packj-npm-registry-firewall-action

Packj firewall for NPM registry

License:Apache-2.0Stargazers:0Issues:2Issues:0

packj-npm-registry-firewall-action-demo

Demo for Packj NPM registry firewall action

License:Apache-2.0Stargazers:0Issues:2Issues:0

top-1m

Stargazers:0Issues:2Issues:0