This repository contains a list of papers about software supply chain
☆29May 22, 2024Updated last year
Alternatives and similar repositories for software_supply_chain_papers
Users that are interested in software_supply_chain_papers are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning☆13Feb 8, 2026Updated 2 months ago
- A fork of Bandit tool with patterns to identifying malicious python code.☆30Sep 1, 2022Updated 3 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆141Oct 5, 2022Updated 3 years ago
- ☆62Jan 3, 2024Updated 2 years ago
- WASP Research Arena for Software☆12Jun 10, 2022Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Collection of tools for analyzing open source packages.☆360Updated this week
- Home of course "Programmable Society" at KTH Royal Institute of Technology☆21Dec 12, 2025Updated 4 months ago
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Jan 25, 2022Updated 4 years ago
- A C/C++ dependency scanner☆40Nov 24, 2023Updated 2 years ago
- ☆11Aug 24, 2023Updated 2 years ago
- Go tool to declaratively bump dependencies.☆12Apr 27, 2026Updated last week
- Tool for automatic extraction of dynamic metadata from nodejs applications☆15Oct 6, 2023Updated 2 years ago
- software art polyglot studio☆21Apr 27, 2026Updated last week
- An interactive web service for the visualization of Java dependencies with DepClean☆21Apr 8, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆32Sep 22, 2024Updated last year
- PyPI malware packages☆59Dec 12, 2018Updated 7 years ago
- The source code (including datasets) of V1SCAN (USENIX Security 2023; will be uploaded).☆41Nov 4, 2023Updated 2 years ago
- Statically built Nix binaries☆17Jan 27, 2020Updated 6 years ago
- A curated list of malware-related papers.☆34Feb 28, 2024Updated 2 years ago
- ☆27Mar 31, 2023Updated 3 years ago
- LibD: Scalable and Precise Third-party Library Detection in Android Markets☆66May 6, 2019Updated 6 years ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆120Mar 21, 2026Updated last month
- ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?☆29Jul 24, 2023Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Do You Know What's In Your Python Packages? A Tool for Visualizing Python Package Registry Security Audit Data☆19Jun 13, 2022Updated 3 years ago
- re|thread is an open collective of computer scientists, artists, and designers, in Stockholm (Sweden)☆34Updated this week
- Static malware analysis using python☆12Jun 22, 2018Updated 7 years ago
- Python package dependency confusion vulnerability POC. Impact this vulnerability is Remote code execution (RCE)☆12Apr 29, 2025Updated last year
- FLACOCO: Fault Localization for Java based on Industry-grade Coverage http://arxiv.org/pdf/2111.12513☆36Apr 27, 2026Updated last week
- This repository contains the hardware, software, and OS support for the Programmable Hardware Monitor (PHMon).☆28Aug 10, 2020Updated 5 years ago
- ☆61Jun 20, 2022Updated 3 years ago
- SIR, SEIR, and beyond☆10Jul 6, 2023Updated 2 years ago
- A reading list for software supply-chain security.☆365Nov 21, 2022Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Automatically generate environment configurations as Dockerfiles☆27Dec 7, 2022Updated 3 years ago
- ☆36Oct 12, 2022Updated 3 years ago
- Android third-party library Detection☆17Mar 7, 2020Updated 6 years ago
- https://icml.cc/virtual/2023/poster/24354☆10Aug 15, 2023Updated 2 years ago
- Public-facing course info for program analysis materials.☆44Dec 4, 2025Updated 5 months ago
- ☆17Mar 20, 2025Updated last year
- Research artifact for Oakland (S&P) 2022, "BEACON: Directed Grey-Box Fuzzing with Provable Path Pruning"☆43Dec 3, 2025Updated 5 months ago