top | item 45280063 (no title) retlehs | 5 months ago This won’t protect against everything, but it still seems like a good idea to implement:https://github.com/danielroe/provenance-action discuss order hn newest indigodaddy|5 months ago Yep I did see that, but I'm not planning on pushing anything, just want a tool to scan for any of the offending packages. Could make my own but feel like somebody must have already made something (and probably better than I can) dflock|5 months ago - [supply-chain-security · GitHub Topics · GitHub](https://github.com/topics/supply-chain-security)- [GitHub - safedep/vet: Protect against malicious open source packages](https://github.com/safedep/vet)- [GitHub - AikidoSec/safe-chain](https://github.com/AikidoSec/safe-chain)- npm audit load replies (1)
indigodaddy|5 months ago Yep I did see that, but I'm not planning on pushing anything, just want a tool to scan for any of the offending packages. Could make my own but feel like somebody must have already made something (and probably better than I can) dflock|5 months ago - [supply-chain-security · GitHub Topics · GitHub](https://github.com/topics/supply-chain-security)- [GitHub - safedep/vet: Protect against malicious open source packages](https://github.com/safedep/vet)- [GitHub - AikidoSec/safe-chain](https://github.com/AikidoSec/safe-chain)- npm audit load replies (1)
dflock|5 months ago - [supply-chain-security · GitHub Topics · GitHub](https://github.com/topics/supply-chain-security)- [GitHub - safedep/vet: Protect against malicious open source packages](https://github.com/safedep/vet)- [GitHub - AikidoSec/safe-chain](https://github.com/AikidoSec/safe-chain)- npm audit load replies (1)
indigodaddy|5 months ago
dflock|5 months ago
- [GitHub - safedep/vet: Protect against malicious open source packages](https://github.com/safedep/vet)
- [GitHub - AikidoSec/safe-chain](https://github.com/AikidoSec/safe-chain)
- npm audit