awesome-repositories.com
Blog
awesome-repositories.com

Descubre los mejores repositorios open-source con nuestra búsqueda potenciada por IA.

ExplorarBúsquedas curadasAlternativas open-sourceSoftware autohospedableBlogMapa del sitio
ProyectoAcerca deCómo clasificamosPrensaServidor MCP
Aviso legalPrivacidadTérminos
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

5 repositorios

Awesome GitHub RepositoriesPackage Security

Auditing and verification of package manager dependencies.

Distinguishing note: Focuses on package manager-specific auditing.

Explore 5 awesome GitHub repositories matching devops & infrastructure · Package Security. Refine with filters or upvote what's useful.

Awesome Package Security GitHub Repositories

Encuentra los mejores repositorios con IA.Buscaremos los repositorios que mejor coincidan usando IA.
  • owasp/cheatsheetseriesAvatar de OWASP

    OWASP/CheatSheetSeries

    32,298Ver en GitHub↗

    The OWASP Cheat Sheet Series is a comprehensive, community-driven repository of concise security best practices and defensive coding patterns. It serves as a centralized knowledge base for developers and security professionals, providing actionable guidance to secure applications across the entire software development lifecycle. The project covers a vast array of security domains, ranging from fundamental web application hardening and authentication protocols to specialized controls for modern infrastructure and artificial intelligence systems. What distinguishes this project is its decentral

    Audits third-party dependencies to prevent the inclusion of malicious code.

    Pythonapplication-securityappsecbest-practices
    Ver en GitHub↗32,298
  • mason-org/mason.nvimAvatar de mason-org

    mason-org/mason.nvim

    10,339Ver en GitHub↗

    mason.nvim is an external tool orchestrator and package manager for Neovim. It automates the installation and lifecycle management of language servers, debuggers, and formatters by acting as a client for remote tooling registries. The project functions as a security-focused installer, utilizing a security firewall to scan and block the installation of compromised or malicious packages. It synchronizes local metadata with remote registries to discover and update available development software. The system handles the full lifecycle of external binaries, including downloading, versioning, and r

    Features a security firewall that intercepts and blocks the download of packages flagged as malicious.

    Lualuamasonneovim
    Ver en GitHub↗10,339
  • crytic/slitherAvatar de crytic

    crytic/slither

    6,141Ver en GitHub↗

    Scans pickle files using an allowlist approach to block malicious payloads that could compromise models or infrastructure.

    Pythonethereumsoliditystatic-analysis
    Ver en GitHub↗6,141
  • rstudio/rstudioAvatar de rstudio

    rstudio/rstudio

    4,952Ver en GitHub↗

    RStudio is a specialized integrated development environment for the R programming language and statistical computing. It provides a workbench for writing, debugging, and executing R code, offering both a desktop application and a server-hosted collaborative platform for managing data science projects. The platform enables the creation of interactive data applications, AI-powered dashboards, and technical reports. It facilitates the sharing of analysis results through a centralized publishing platform and supports the rendering of notebooks and markdown into multiple file formats. The environ

    Curates repositories and enforces security policies through vulnerability reports and blocking rules for dependencies.

    Java
    Ver en GitHub↗4,952
  • bodadotsh/npm-security-best-practicesAvatar de bodadotsh

    bodadotsh/npm-security-best-practices

    761Ver en GitHub↗

    This project provides a comprehensive guide for securing the software supply chain within Node.js and npm environments. It focuses on hardening the entire lifecycle of third-party dependencies and package publishing processes to protect applications from malicious code injection and unauthorized registry modifications. The guide distinguishes itself by emphasizing identity-based authentication and cryptographic provenance to verify the origin of distributed artifacts. It advocates for strict governance policies, such as enforcing minimum release ages for dependencies and disabling automatic l

    Provides comprehensive configuration settings to harden package manager security and mitigate supply-chain risks.

    awesomedenojavascript
    Ver en GitHub↗761
  1. Home
  2. DevOps & Infrastructure
  3. Package Security

Explorar subetiquetas

  • Malicious Package Interceptors2 sub-etiquetasSystems that scan and block the download of packages flagged for known malicious behavior during installation. **Distinct from Package Security:** Distinct from Package Security: focuses on real-time interception of malicious files rather than general auditing.