Package Hunter: Detect malicious code in your dependencies

dnsmichi · November 24, 2021, 7:42pm

Jie · November 26, 2021, 4:29am

Is that only for npm projects?

dappelt · November 26, 2021, 1:15pm

@Jie npm, yarn, and bundler projects are supported. Have a look at the CLI to conveniently analyze projects from the command line GitLab.org / security-products / Package Hunter CLI · GitLab

Topic		Replies	Views
The ultimate guide to software supply chain security Community	0	249	August 30, 2022
Dependency Verification DevSecOps	0	168	July 9, 2024
Monitoring For Gitlab Software Package Updates and CVEs? How to Use GitLab	9	512	January 29, 2024
GitLab Critical Security Release: 15.1.1, 15.0.4, and 14.10.5 Community	4	862	July 5, 2022
Does GitLab support open source developers? Community security , open-source	2	653	September 9, 2022