pkgsign Logo

pkgsign

0
Free
Visit Website

pkgsign is a CLI tool for signing and verifying npm and yarn packages. It allows for signing packages with PGP private keys or keybase.io for simplicity. Recently, several packages went missing from the npm registry, highlighting the importance of package signing to prevent unauthorized modifications and ensure trust in package sources.

FEATURES

ALTERNATIVES

Community project for developing common guidelines and best practices for secure configurations.

Package verification tool for npm with various verification and testing capabilities.

Certificate Transparency Monitor that alerts you when an SSL/TLS certificate is issued for your domains.

A guide to secure Ruby development, providing guidelines and recommendations for secure coding practices.

Recorded talks from the Hardwear.io Conference 2018 covering various hardware security topics.

Leading academic department offering diverse courses and research opportunities.

Email collection point designed to trap spammers and blacklist IPs.

Android port of Radamsa for generating code with Android NDK support.

PINNED