Python source code auditing and static analysis on a large scale (by SourceCode-AI)
Consider contributing your talents to projects that seek to improve the security of these registries. One project worth your attention is Aura, a Python source code auditing and static analysis tool. For those who want to explore Python malware detection challenges identified as important by the Python Software Foundation, see here. Consider contributing malware checks to the Python Package Index codebase, aka Warehouse.
A Large-Scale Security-Oriented Static Analysis of Python Packages in PyPI
1 project | news.ycombinator.com | 30 Jul 2021
PHP Array: A Gross Mistake
1 project | dev.to | 2 May 2022
Open-source way to scan dependencies for CVEs?
2 projects | reddit.com/r/golang | 15 Apr 2022
Adapting the tagless-final use-case to PHP
1 project | reddit.com/r/functionalprogramming | 16 Mar 2022
One secret tip for first-time OSS contributors. Shh! 🤫 don't tell anyone else
6 projects | dev.to | 7 Mar 2022