maloss
dockerify
maloss | dockerify | |
---|---|---|
3 | 1 | |
106 | 0 | |
- | - | |
0.0 | 0.0 | |
over 1 year ago | almost 2 years ago | |
Java | Shell | |
MIT License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
maloss
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
-
Vulnerability scanner written in Go that uses osv.dev data
We've an open-source project that does this: https://github.com/osssanitizer/maloss I'm working on creating a CLI/web interface for this. Happy to chat (email in profile).
- PyPI: Python packets steal AWS keys from users
dockerify
-
PyPI: Python packets steal AWS keys from users
I hacked up a bash script for running arbitrary command in docker container, mounting only PWD. It traces dynamic libraries through ldd and creates a new image for each unique command. I got it working for ffmpeg:
https://github.com/paskozdilar/dockerify
I might try to optimize it a little bit later, perhaps bind-mount dynamic libraries instead of creating a new image for each command.
What are some alternatives?
packj - Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
software-supply-chain-compromises - A dataset of software supply chain compromises. Please help us maintain it!
osv-scanner - Vulnerability scanner written in Go which uses the data provided by https://osv.dev
firejail - Linux namespaces and seccomp-bpf sandbox
pypi_malware - PyPI malware packages
melange - build APKs from source code
apko - Build OCI images from APK packages directly without Dockerfile
trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more