vet
foqos
| vet | foqos | |
|---|---|---|
| 20 | 7 | |
| 1,073 | 542 | |
| 4.6% | 13.5% | |
| 9.4 | 9.6 | |
| 3 days ago | 6 days ago | |
| Go | Swift | |
| Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
vet
-
Show HN: Tips to stay safe from NPM supply chain attacks
For GitHub Actions, i found http://safedep.io/ to be helpful, not only it guard against known attacks, but also it has its own malware detection engine.
- Vet: Open-source software supply chain security tool
-
Tinycolor Supply Chain Attack Post-Mortem
- [GitHub - safedep/vet: Protect against malicious open source packages ](https://github.com/safedep/vet)
-
Ask HN: What Are You Working On? (June 2025)
I am working on a next-gen software composition analysis tool that can identify malicious open source packages through code analysis. Adopts a policy as code (CEL) approach to build security guardrails against risky OSS components using opinionated policies.
GitHub: https://github.com/safedep/vet
- Vet MCP: Software Composition Analysis for AI Code Editors
-
Malicious npm Package Impersonating Popular Express Cookie Parser
Our free and open source tool vet is integrated with the SafeDep Cloud Package Scanning Service and can be used to detect malicious packages before they are installed. vet-action is a GitHub Action that can be used to establish proactive guardrails against malicious open source packages in your GitHub Actions workflows.
-
How to Effectively Vet Your Supply Chain for Optimal Performance
Explore about SafeDep on GitHub - https://github.com/safedep/vet
-
Ask HN: How are you acquiring first 100 users?
Not sure if it’s relevant because you specifically mentioned about B2C.
For cyber security product, we took the open source route. We build our core technology in public as open source project.
https://github.com/safedep/vet
The commercial SaaS is for scaling and management. Our entire funnel is based on OSS. Folks who have already found value and is looking to scale their deployment.
This model works for us especially at our current stage where we are 100% engineering led.
-
Show HN: MCP-Shield – Detects security issues in MCP servers
May be try out vet as well: https://github.com/safedep/vet
vet is backed by a code analysis engine that performs malicious package (npm, pypi etc.) scanning. We recently extended it to support GitHub repository scanning as well.
It found the malicious behaviour in mcp-servers-example/bad-mcp-server.js
-
Agentic Analysis of Open Source Package Code for Malware
➡️ https://github.com/safedep/vet
foqos
- Thank HN: You helped make Foqos a success, 100k downloads and 4k+ reviews, 4.9/5
- iPhone Dumbphone
-
Show HN: I built an app to block Shorts and Reels
I love this! You don't see these types of apps for Android. I get the request for Foqos: https://github.com/awaseem/foqos
Would you ever open source this?
- Foqos: Block Distracting Apps
-
Ask HN: How are you acquiring first 100 users?
I posted on HN about Foqos: https://www.foqos.app/ and got a few hundred downloads that same day which is awesome. I still continue to reach out to creators in Youtube and tiktok who have reviewed similar products to see if they would give any feedback. Usually since they have a larger online presence than I do, I noticed the publicly started recommending the app to others on Reddit, Threads, etc...
I've been also posting on threads after each update. I have over a 1000 downloads now, I don't have tracking but getting a consistent download rate of about 30 a day
Zero marketing and its been a ton of fun so far. Hope that helps!
-
Ask HN: What are you working on? (April 2025)
I launched Foqos here a few months back: https://github.com/awaseem/foqos and just working on the feedback. Since then added QR codes, breaks, ability to block apps manually and even a mini redesign. It’s been a ton of fun so far!
-
I built an app to stop me doomscrolling by touching grass
Damn I love this! how was the process of getting approval from the app store? Wondering if you had to send videos instead of having reviewers touch grass. I launched Foqos earlier this month: https://github.com/awaseem/foqos and the review was brutal plus the form you need to submit to get permissions for Family activity
What are some alternatives?
cnspec - An open source, cloud-native security to protect everything from build to runtime
digipaws - Free App Blocker for android
scorecard - OpenSSF Scorecard - Security health metrics for Open Source
OwnDroid - 使用安卓Device owner特权管理你的设备。Use Android Device owner privilege to manage your device.
secure-repo - Orchestrate GitHub Actions Security
Harbour - Docker/Portainer management app for iOS, iPadOS and macOS.