npm-security

Here are 2 public repositories matching this topic...

copyleftdev / lazarus-19day-abtest

Threat intel package for Lazarus Group's 3-wave GitHub phishing campaign targeting developers (Mar-Apr 2026). YARA, Sigma, Suricata, Nuclei rules + STIX 2.1 bundle + ATT&CK Navigator layer + full C2 infrastructure map. Defensive use only.

ioc apt phishing suricata nuclei stix sigma yara dprk threat-intelligence detection-rules mitre-attack supply-chain-security developer-security npm-security lazarus-group contagious-interview

Updated Apr 9, 2026
Python

Khaeldur / supply-chain-defender

Star

Multi-ecosystem supply chain attack scanner. Built same-day as the axios npm compromise (GHSA-fw8c-xr5c-95f9, 2026-03-31).

axios devsecops malware-detection security-tool sbom supply-chain-security npm-security

Updated Mar 31, 2026
Python

Improve this page

Add a description, image, and links to the npm-security topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the npm-security topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly