🛡️ Blazing fast Supply Chain Security tool written in Rust. Features ephemeral sandboxing, hybrid analysis (CVE + Heuristics), and entropy-based malware detection.

Supply-chain threat detection for npm and PyPI. Detects Shai-Hulud, typosquatting, credential theft, obfuscation, reverse shells, GitHub Actions injection.

GuOx: Ultimate enterprise‑grade, AI & WASM‑powered Express security framework.

Skill to detect Vulnerability in your project

ForgeScan is a high-performance supply-chain security scanner built with Rust and TypeScript. It detects npm typo-squatting attacks and obfuscated malware using Shannon entropy analysis and Levenshtein distance heuristics. Designed for speed, clarity, and explainable security research.

Git Seer is a powerful CLI tool that provides instant insights into any public GitHub repository.

🛡️ License compliance checker for your projects. Scan dependencies, detect problematic licenses, and ensure compliance. Perfect for enterprises.

Dependency scanner and updater

Scan all GitHub repos in an org or personal account to find packages below a specific version. Supports Composer & Node dependencies.