3 tools and resources
A CLI tool for signing and verifying npm and yarn packages.
Tool to inform about potential risks in project dependencies list.
GuardDog is a CLI tool for identifying malicious PyPI and npm packages through heuristics and Semgrep rules.