Do you know if open-source Python package in your application is malicious/risky?

Prodramp

pop culture firewall gems opensource packj python react ruby rubygems

description

Learn to identify if your python (pypi), Ruby (Rubygems) and JavaScript - React (NPM) is malicious or risky to use in your own Python, Ruby or JavaScript application.

Packj - The vetting tool 🚀 behind our "dependency firewall" to block malicious/risky open-source packages in your software supply chain

https://github.com/ossillate-inc/packj

Various Command Sample:

$ python main.py audit -t -p pypi:tensorflow rubygems:overcommit
$ python main.py audit -t -p pypi:pandas npm:
$ python main.py -f npm:package.json pypi:requirements.txt

== Video Timeline == (00:00) Quick Intro (00:30) Why the need? (02:28) Quick tool overview (05:50) Packj installation (11:15) Audit Package (15:40) End Credits

Please visit: https://prodramp.com | @prodramp https://www.linkedin.com/company/prodramp

Content Creator: Avkash Chauhan (@avkashchauhan) https://www.linkedin.com/in/avkashchauhan

Tags: #python #ruby #react #developertools ... https://www.youtube.com/watch?v=HnVw6zvaRrI

created

2023-01-11

staked

0.0 LBC

license

Copyrighted (contact publisher)

File size

150169407 Bytes