Dirty-waters

Latest version: v0.14.0

Safety actively analyzes 682457 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

0.1.1

This release add one new feature: Check release tag accessibility of the dependencies

0.1.0

Dirty-Waters is an automated tool for identifying software supply chain issues in wallet projects. This initial release focuses on analyzing JavaScript cryptocurrency wallet projects and provides the following features:
1. One version Analysis: Examines static data of all dependencies from package registry and source code repository.
2. Differential Analysis: Compares two versions of a project to highlight changes in the source code.
3. Comprehensive Reporting: Generates detailed markdown reports for both static and differential analyses.

Key capabilities:
- Detects dependencies without source code links
- Flags deprecated dependencies
- Highlights dependencies sourced from forks
- Detects dependencies without provenance
- Identifies packages lacking version tags
- Identify first-time author and merger in the source code repository

We welcome feedback and contributions to improve the tool's capabilities and expand its support for other ecosystems.

Links

Releases

Has known vulnerabilities

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.