vuduclyunitn/software_supply_chain_papers external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

vuduclyunitn/software_supply_chain_papers

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/vuduclyunitn/software_supply_chain_papers)

Close

vuduclyunitn / software_supply_chain_papersView on GitHubMore

• External links
• Readme badge

This repository contains a list of papers about software supply chain

☆29May 22, 2024Updated 2 years ago

Alternatives and similar repositories for software_supply_chain_papers

Users that are interested in software_supply_chain_papers are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• lyvd / bad-snakes-icse23-artifacts

  View on GitHub
  The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning
  ☆13Feb 8, 2026Updated 4 months ago
• lyvd / bandit4mal

  View on GitHub
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆30Sep 1, 2022Updated 3 years ago
• osssanitizer / maloss

  View on GitHub
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆140Oct 5, 2022Updated 3 years ago
• IQTLabs / software-supply-chain-compromises

  View on GitHub
  A dataset of software supply chain compromises. Please help us maintain it!
  ☆130Sep 16, 2022Updated 3 years ago
• ASSERT-KTH / deptrim

  View on GitHub
  DepTrim automatically specializes the software supply chain of dependencies in Maven projects https://arxiv.org/pdf/2302.08370
  ☆15Jun 5, 2026Updated last week
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• microsoft / OSSGadget

  View on GitHub
  Collection of tools for analyzing open source packages.
  ☆364Jun 5, 2026Updated last week
• ASSERT-KTH / yajta

  View on GitHub
  Yajta is a extensible library for bytecode probe insertion, built on top of javassist. Its transformations may be applied at load time wi…
  ☆15Oct 3, 2022Updated 3 years ago
• githubnext / amalfi-artifact

  View on GitHub
  Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"
  ☆47Jan 25, 2022Updated 4 years ago
• DataDog / malicious-software-packages-dataset

  View on GitHub
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆354Updated this week
• NJUJisq / DS_Python

  View on GitHub
  ☆11Aug 24, 2023Updated 2 years ago
• chainguard-dev / gobump

  View on GitHub
  Go tool to declaratively bump dependencies.
  ☆12Updated this week
• bbaudry / swart-studio

  View on GitHub
  software art polyglot studio
  ☆25Jun 4, 2026Updated last week
• EvanXiaa / Awesome-LLM_For-SE-Sec-Papers

  View on GitHub
  ☆32Sep 22, 2024Updated last year
• ZJUNESA / SANDP

  View on GitHub
  Seminar 2022
  ☆25Mar 19, 2026Updated 2 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• gnipping / Awesome-Malware-Related-Papers

  View on GitHub
  A curated list of malware-related papers.
  ☆34Feb 28, 2024Updated 2 years ago
• WOOSEUNGHOON / MOVERY-public

  View on GitHub
  ☆27Mar 31, 2023Updated 3 years ago
• lxyeternal / pypi_malregistry

  View on GitHub
  The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…
  ☆122Mar 21, 2026Updated 2 months ago
• Tricker-z / TPLite

  View on GitHub
  ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?
  ☆29Jul 24, 2023Updated 2 years ago
• IQTLabs / AuraBorealisApp

  View on GitHub
  Do You Know What's In Your Python Packages? A Tool for Visualizing Python Package Registry Security Audit Data
  ☆19Jun 13, 2022Updated 4 years ago
• rethread-studio / rethread

  View on GitHub
  re|thread is an open collective of computer scientists, artists, and designers, in Stockholm (Sweden)
  ☆35Apr 28, 2026Updated last month
• ASSERT-KTH / flacoco

  View on GitHub
  FLACOCO: Fault Localization for Java based on Industry-grade Coverage http://arxiv.org/pdf/2111.12513
  ☆37Updated this week
• bu-icsg / PHMon

  View on GitHub
  This repository contains the hardware, software, and OS support for the Programmable Hardware Monitor (PHMon).
  ☆28Aug 10, 2020Updated 5 years ago
• chainguard-dev / ssc-reading-list

  View on GitHub
  A reading list for software supply-chain security.
  ☆364Nov 21, 2022Updated 3 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• ZJU-SEC / Readings

  View on GitHub
  ☆61May 18, 2026Updated 3 weeks ago
• Mythobeast / epidemicmodels

  View on GitHub
  SIR, SEIR, and beyond
  ☆10Jul 6, 2023Updated 2 years ago
• DeepSoftwareAnalytics / LibDB

  View on GitHub
  ☆38Oct 12, 2022Updated 3 years ago
• njustbdag / LibRoad

  View on GitHub
  Android third-party library Detection
  ☆17Mar 7, 2020Updated 6 years ago
• FuzzingLabs / wasm_runtimes_fuzzing

  View on GitHub
  Improving security and resilience of WebAssembly VMs/runtimes/parsers using fuzzing
  ☆97Jul 29, 2024Updated last year
• zh1yu4nyu / CodeIPPrompt

  View on GitHub
  https://icml.cc/virtual/2023/poster/24354
  ☆10Aug 15, 2023Updated 2 years ago
• CMU-program-analysis / CMU-program-analysis.github.io

  View on GitHub
  Public-facing course info for program analysis materials.
  ☆44Dec 4, 2025Updated 6 months ago
• 5hadowblad3 / Beacon_artifact

  View on GitHub
  Research artifact for Oakland (S&P) 2022, "BEACON: Directed Grey-Box Fuzzing with Provable Path Pruning"
  ☆43Dec 3, 2025Updated 6 months ago
• WSP-LAB / Montage

  View on GitHub
  Montage: A Neural Network Language Model-Guided JavaScript Engine Fuzzer
  ☆90May 3, 2024Updated 2 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• cesarsotovalero / time-series-classification

  View on GitHub
  A package for performing time series classification in Weka.
  ☆10Aug 16, 2023Updated 2 years ago
• SoftwareLanguagesSecurityLab / ConFIRM

  View on GitHub
  ☆25Jun 16, 2021Updated 4 years ago
• VulnLoc / VulnLoc

  View on GitHub
  ☆35Nov 11, 2021Updated 4 years ago
• bzsome / ChaoGoDown

  View on GitHub
  Go语言，多线程并发，分段下载，保存下载进度，中断继续下载
  ☆14May 21, 2020Updated 6 years ago
• 5hadowblad3 / Titan

  View on GitHub
  Research artifact for Oakland (S&P) 2024, "Titan: Efficient Multi-target Directed Greybox Fuzzing"
  ☆56Feb 17, 2025Updated last year
• CGCL-codes / MalTracker

  View on GitHub
  ☆17Jul 25, 2024Updated last year
• diverse-project / maven-miner

  View on GitHub
  This projects mines maven central and creates a global dependency graph
  ☆33Sep 1, 2022Updated 3 years ago