milliways-infosec/AikidoSec-safe-chain
7
0
Fork 0
mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 12:10:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
1234 commits 61 branches 106 tags 3.3 MiB
Commit graph

124 commits

Author SHA1 Message Date
Nell Boulle
3ef59f6921
Merge 1b0b85228d into 9453c8c0c9 2026-05-22 16:55:12 +08:00
Chris Ingram
8453012f7b
Merge remote-tracking branch 'aikido/main' into feat/pdm-support 2026-05-14 09:51:31 +01:00
James McMeeking
28132ba3fc
Merge branch 'main' into feature/add-rush-monorepo-support 2026-05-08 11:25:47 +01:00
Samuel Vandamme
bd876275b3 updated troubleshooting guide and linked from readme 2026-05-06 10:51:13 +02:00
Samuel Vandamme
cd5040c3be moved troubleshooting from docs to here 2026-05-06 10:47:37 +02:00
James McMeeking
98a1ba7d10
Add rushx support too 
Co-authored-by: Copilot <copilot@github.com>
 2026-05-01 17:04:38 +01:00
James McMeeking
5cf2ffe201
Merge branch 'main' into feature/add-rush-monorepo-support 2026-05-01 16:49:49 +01:00
Reinier Criel
a0f0372e15 Add PIP_CONFIG_FILE section in readme 2026-04-30 15:21:51 -07:00
bitterpanda
222216e22a
Merge pull request #435 from AikidoSec/bitterpanda63-patch-3 
Enhance Aikido Endpoint link with UTM parameters
 2026-04-28 09:03:55 +02:00
bitterpanda
6abad2d37f
Enhance Aikido Endpoint link with UTM parameters 
Updated the Aikido Endpoint link to include UTM parameters for tracking.
 2026-04-28 08:50:54 +02:00
Reinier Criel
ae40140199 Fix Bitbucket Pipelines Example 2026-04-27 12:51:31 -07:00
James
84346fdea7
Merge branch 'main' into feature/add-rush-monorepo-support 2026-04-23 16:29:15 +01:00
Samuel Vandamme
c22f36113c moved endpoint up 2026-04-22 17:42:22 +02:00
Chris Ingram
abbe0480b6
Merge branch 'main' into feat/pdm-support 2026-04-22 14:25:32 +01:00
Samuel Vandamme
a840a99f1b moved endpoint up 2026-04-21 11:20:43 +02:00
Sander Declerck
21b44eb4a8
Mention cursor, windsurf, ... 2026-04-21 11:13:25 +02:00
Sander Declerck
b8d16c15b9
Add Aikido Endpoint paragraph to README.md 2026-04-21 11:09:18 +02:00
Reinier Criel
782af8e789
Merge pull request #411 from AikidoSec/feat/dynamic-install-dir 
Add support for custom install directory
 2026-04-16 10:04:25 -07:00
Stephen Benjamin
14c8abffea Add uvx support 
Add uvx as a supported package manager so that `uvx` commands are
routed through safe-chain's MITM proxy for malware detection, just
like `uv`. Previously, `uvx` bypassed all safe-chain protections.

The uvx package manager reuses the existing uv command runner since
uvx is functionally equivalent to `uv tool run`.

Fixes #268

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-04-14 10:04:10 -04:00
Reinier Criel
7dd68cea12 Clean up readme 2026-04-13 15:10:52 -07:00
Reinier Criel
d064d46668 Cleanup 2026-04-13 11:01:45 -07:00
Reinier Criel
1aef941d1c Update README 2026-04-10 14:13:34 -07:00
Reinier Criel
b0f392522b Some cleanup 2026-04-10 14:08:59 -07:00
James
f26cdab1f6
Merge branch 'main' into feature/add-rush-monorepo-support 2026-04-06 18:52:18 +01:00
Chris Ingram
1eb4fe05fd Add pdm package manager support 
PDM is a modern Python package manager using pyproject.toml (PEP 621).
Uses the same MITM-only proxy approach as poetry/uv/pipx — all malware
detection and minimum package age enforcement happens at the proxy layer
by intercepting PyPI requests.
 2026-04-06 13:01:42 +01:00
bitterpanda
da9e3d475e
Merge pull request #365 from 123Haynes/main 
add a configuration option for custom malwaredb and newpackagelist urls.
 2026-04-03 02:26:34 +02:00
James McMeeking
5690e55d99
Add rush command wrapper and tests 2026-04-02 12:31:02 +01:00
Reinier Criel
4564b7f607 Initial 2026-04-01 14:32:36 -07:00
123Haynes
1abe5932ad add a configuration option for custom malwaredb and newpackagelist urls. 2026-03-31 11:52:26 +00:00
Nell Boulle
1b0b85228d
README: fix inter-section link 
There are two "Minimum package age" headers, so currently the link refers to its own section, instead of the subsequent one on configuration.
 2026-03-31 18:13:14 +10:00
Reinier Criel
fd6fb456b4 Add minimum package age check for pypi 2026-03-28 10:15:13 -07:00
Reinier Criel
e9db22eb50 Merge branch 'main' into feature/minimum-package-age-from-list 2026-03-26 14:37:07 -07:00
Sander Declerck
d113ca3061
Increase default min package age to 48 hours 2026-03-25 16:19:15 +01:00
Reinier Criel
07e315a382 Adapt doc 2026-03-19 16:07:31 -07:00
Sander Declerck
cfaa8e45ad
Move config file to .safe-chain path. 2026-03-19 16:10:32 +01:00
Sander Declerck
86ae23332e
Merge pull request #315 from AikidoSec/gitlab-ci-cd 
Document CI/CD for GitLab
 2026-02-05 14:11:20 +01:00
Sander Declerck
8ea4463ac5
Update troubleshooting link 2026-02-05 11:38:28 +01:00
Sander Declerck
90eba0a0b6
Document CI/CD for GitLab 2026-02-04 14:04:46 +01:00
Sander Declerck
6c814ff82f
Only allow wildcards for scoped packages (@scope/*) 2026-01-15 15:13:00 +01:00
Sander Declerck
884cb6e026
Allow trailing * for wildcard matching 2026-01-14 17:51:41 +01:00
Sander Declerck
6815b62019
Allow to exclude packages from the minimum package age 2026-01-14 17:41:23 +01:00
Robert Slootjes
b25d405972
Add Bitbucket Pipelines example 2026-01-13 08:19:10 +01:00
Sander Declerck
20994c1834
Document to configure loglevel through env variables. 2026-01-12 11:01:54 +01:00
Sander Declerck
e8f993623b
Add troubleshooting docs 2026-01-06 15:48:15 +01:00
Sander Declerck
d7d5bacd21
Remove warning from readme 2026-01-06 10:53:32 +01:00
Sander Declerck
8bfbe1c77d
Merge pull request #232 from galargh/pip-custom-registries 
feat: allow python custom registries configuration
 2026-01-05 14:01:51 +01:00
Sander Declerck
74c57cd86a
Merge pull request #262 from AikidoSec/safe-chain-verify-command 
Add command to verify safe-chain is intercepting the package managers commands
 2026-01-05 09:10:05 +01:00
Reinier Criel
bc4370348f Adapt per review 2025-12-30 11:19:00 -08:00
Reinier Criel
8d0dcd0068 Small fix 2025-12-30 10:11:25 -08:00
Reinier Criel
7bfbe1376b Jenkins CI pipeline 2025-12-30 09:22:03 -08:00