The rising trend of malicious packages in open source ecosystems | Snyk

This page summarizes the projects mentioned and recommended in the original post on /r/netsec
Npm HacktoberFest Yarn package-manager lockfile

SurveyJS
Our great sponsors
  • SurveyJS - Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
Our great sponsors

  • npq

    🎖safely* install packages with npm or yarn by auditing them as part of your install process

    • You just described my project called npq: https://github.com/lirantal/npq :-)

  • lockfile-lint

    Lint an npm or yarn lockfile to analyze and detect security issues

    • I built a lockfile-lint (https://github.com/lirantal/lockfile-lint) that helps with ensuring that some of these trust policies are enforced.

  • SurveyJS

    Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App. With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.

    SurveyJS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts