GitHub

DataDog/guarddog: GuardDog is a CLI tool to Identify malicious PyPI packages

GuardDog is a CLI tool that allows to identify malicious PyPI and npm packages, Go modules, GitHub actions, or VSCode extensions. It runs a set of heuristics on the package source code (through ...
GitHub

This is an R package for element cycle analysis using metagenomic data.

#Local installation (recommended, R ≥ 4.2.0) 1.Download "pkgs_local.zip" your local computer from https://github.com/yuezhengfu/CNPS.cycle/releases/download/V1.0.0 ...
IEEE

Bad Snakes: Understanding and Improving Python Package Index Malware Scanning

Abstract: Open-source, community-driven package repositories see thousands of malware packages each year, but do not currently run automated malware detection systems. In this work, we explore the ...
The Hacker News

Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads

PyStoreRAT spreads via fake GitHub tools using small Python or JavaScript loaders to fetch HTA files and install a modular ...
Analytics Insight

Top Crypto Libraries for Python Developers in 2025

Overview:  Python remains a leading choice for building secure and scalable blockchain applications.PyCryptodome and PyNaCl ...
The Hacker News

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware

The North Korean threat actors behind the Contagious Interview campaign have continued to flood the npm registry with 197 more malicious packages since last month. According to Socket, these packages ...