Skip to content
/ check-pip Public

Python script to check if any malicious pip packages listed in a text file have been installed.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

elliotwutingfeng/check-pip

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
check.py
check.py
 
 
malicious_packages.txt.example
malicious_packages.txt.example
 
 

Repository files navigation

Check pip

Python

GitHub license

Python script to check if any malicious pip packages listed in a text file have been installed.

Requirements

Python 2.7 or Python 3

Instructions

Create a text file malicious_packages.txt in the repository folder filled with malicious Python package names, one name per line. Refer to malicious_packages.txt.example for the format.

Afterwards, run:

python check.py

If none of the packages listed in malicious_packages.txt have been installed, there will be no output.

Otherwise the list of installed malicious packages will be printed to stdout as follows:

3 malicious pip packages from `malicious_packages.txt` detected in `pip list --format=freeze` output
The packages are
['malicious_package1', 'malicious_package2', 'malicious_package3']

About

Python script to check if any malicious pip packages listed in a text file have been installed.

Topics

package pypi malware supply-chain-attacks

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Languages