Over 100k Infected Repos Found on GitHub

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com

SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
  • container-shell

    Starts and attaches a sandboxed shell using docker with access to the current or project directory

    Check out https://github.com/jrz/container-shell it is one of the use cases. Not a VM but a docker container

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  • BrowserBox

    🌀 Browse the whole web from a web page. Remote browser isolation. For compliance, integration, security, privacy and more! By https://dosyago.com

    This sucks. Supply chain is such an issue.

    Even tho we don't currently target any npm releases, I make use of socket.dev to monitor my project by creating an npm release for it. But my project BrowserBox (lightweight virtualized web browser) only uses ~800 dependencies including all descendents, with only 19 top-level deps (cool your heels non-JavaScript folks, this is comparatively lightweight for a full stack boing).

    I'm considering just snapshotting all 800 deps into a @browserbox namespace at npm. And then tracking any vulnerabilities discovered and patching the fixes.

    It sounds crazy, but that's where we are. At least that way I "own" all the dependencies and can guarantee (up to company security at least) that we don't have supply chain vulns on the Node/JS side.

    https://socket.dev

    https://github.com/BrowserBox/BrowserBox

  • qubes-issues

    The Qubes OS Project issue tracker

    Are you using an Nvidia GPU?

    https://github.com/QubesOS/qubes-issues/issues/5104

    https://github.com/QubesOS/qubes-issues/issues/7591

    If not, try this: https://github.com/QubesOS/qubes-issues/issues/6880#issuecom...

    There is no tearing on my Librem laptops.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts