A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerability (OSV) format.
Apache License 2.0
205
stars
19
forks
source link
Repair NPM namespace issues after Reversing Labs import #558
Fixes #555.
For reports for previously unreported NPM packages, the reports have been moved to the correct location.
TBD: reports that overlap with existing NPM packages