Malicious library inits?

This page summarizes the projects mentioned and recommended in the original post on /r/golang

InfluxDB - Purpose built for real-time analytics at any scale.
InfluxDB Platform is powered by columnar analytics, optimized for cost-efficient storage, and built with open data standards.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
  • go

    The Go programming language

    There was this issue that tried to add flags to prohibit inits from running but wasn't accepted: https://github.com/golang/go/issues/43731

  • InfluxDB

    Purpose built for real-time analytics at any scale. InfluxDB Platform is powered by columnar analytics, optimized for cost-efficient storage, and built with open data standards.

    InfluxDB logo
  • osv.dev

    Open source vulnerability DB and triage service.

    Something like osv-scanner (https://osv.dev/), Github's depandabot etc would help to a great extend in detecting malicious dependencies. Not much else be done I guess

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • XAES-256-GCM

    2 projects | news.ycombinator.com | 26 Jun 2024
  • Wizards of Opensource, Ep 1: Ryan Dahl

    7 projects | dev.to | 7 Sep 2023
  • We have getrandom at home

    8 projects | /r/rust | 11 Mar 2023
  • Ask HN: Is there a portable encryption file format?

    6 projects | news.ycombinator.com | 24 Mar 2022
  • made an XOR encryption, is it secure?

    2 projects | /r/crypto | 8 May 2021