Here’s a New Tool That Scans Open-Source Repositories for Malicious Packages

2 May 2022

The Open Source Security Foundation (OpenSSF) has announced the initial prototype release of a new tool that’s capable of carrying out dynamic analysis of all packages uploaded to popular open source repositories. Called the Package Analysis project, the initiative aims to secure open-source packages by detecting and alerting users to any malicious behavior with the goal of bolstering the security of the software supply chain and increasing trust in open-source software.

Read full article on The Hacker News

Date:

2 May 2022

Categorie(s):

NEWS

Tag(s):

Google, Malicious, New, Packages, Repositories

Sacramento airport goes no-fly after AT&T internet cable snipped19 April 2024
Active adversary report: Ransomware hit a ceiling, but security teams at risk for more pain19 April 2024
Akira takes in $42 million in ransom payments, now targets Linux servers19 April 2024
Forget Boss Battles, RedLine Malware Aims To Defeat Gamers With Fake Cheats19 April 2024
Breakthrough in Quantum Cloud Computing Ensures its Security and Privacy19 April 2024