milliways-infosec/AikidoSec-safe-chain
7
0
Fork 0
mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 12:10:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
527 commits 61 branches 106 tags 3.3 MiB
Commit graph

527 commits

This branch
This branch
All branches
Author SHA1 Message Date
Reinier Criel
a6423763e7 More package names 2025-11-30 20:30:35 -08:00
Reinier Criel
5a7a9dd03e Fix test to account for normalization 2025-11-30 20:28:06 -08:00
Reinier Criel
c7edefd247 Fix issue during manual testing 2025-11-30 20:25:13 -08:00
Reinier Criel
26157cf5a7 Fix type check 2025-11-27 14:02:37 -08:00
Reinier Criel
d863cc6920 Another iteration 2025-11-27 14:00:34 -08:00
Reinier Criel
7ddeb9025b Fix certUtils 2025-11-27 13:34:34 -08:00
Reinier Criel
2810a87cd0 Another try 2025-11-27 13:25:53 -08:00
Reinier Criel
0106767c35 Another try 2025-11-27 13:23:03 -08:00
Reinier Criel
bbbbe4d32a Add lazy loading for certs 2025-11-27 13:19:17 -08:00
Reinier Criel
0ee5106b7a Fix function placement 2025-11-27 13:08:35 -08:00
Reinier Criel
a0bbe38ee7 Change back to localhost for testing 2025-11-27 13:03:39 -08:00
Reinier Criel
7ab51a992c Merge branch 'main' into feature/poetry-2 2025-11-27 12:54:55 -08:00
Sander Declerck
2eb141caa3
Merge pull request #181 from AikidoSec/update-dependencies 
Update node-forge, npm-registry-fetch and make-fetch-happen
 2025-11-27 15:08:50 +01:00
Sander Declerck
c5b4fbf238
Update node-forge, npm-registry-fetch and make-fetch-happen 2025-11-27 10:34:11 +01:00
Hans Ott
72d6acaa7f
Merge pull request #177 from AikidoSec/banner2 
Add banner for safe-chain
 2025-11-27 09:57:07 +01:00
Reinier Criel
5b479ef69e Some cleanup 2025-11-26 15:53:01 -08:00
Reinier Criel
f5af26092a Fix cert issues in Virtual Environments 2025-11-26 15:48:29 -08:00
Reinier Criel
9c55a95eb9 Fix e2e tests 2025-11-26 14:31:11 -08:00
Reinier Criel
4bfc315b57 Skeleton 2025-11-26 14:13:49 -08:00
Hans Ott
da1d76e43f Update banner with new tag line 2025-11-26 18:23:53 +01:00
Hans Ott
3140dcc071 Add banner for safe-chain 2025-11-26 17:40:18 +01:00
Sander Declerck
a57c37b58d
Merge pull request #176 from AikidoSec/min-package-age-configuration 2025-11-26 17:24:25 +01:00
Sander Declerck
9b5b3cad22
Rename the environment variable 2025-11-26 16:47:46 +01:00
Sander Declerck
3e6ff1ab56
Update readme file 2025-11-26 16:46:01 +01:00
Sander Declerck
13892efa70
Allow to configure the minimum package age 2025-11-26 16:42:51 +01:00
Sander Declerck
dc6c657d41
Merge pull request #162 from AikidoSec/readme-update-intro 
Update intro in README.md
 2025-11-26 16:41:55 +01:00
Sander Declerck
3ceed1fc4b
Merge branch 'main' into readme-update-intro 2025-11-26 16:31:41 +01:00
bitterpanda
5c3c3399d9
Merge pull request #168 from AikidoSec/feature/uv 
Add uv (Astral Python Package Mgr) support
 2025-11-26 13:20:45 +01:00
Reinier Criel
023bccec11 Some more cleanup 2025-11-25 19:55:36 -08:00
Reinier Criel
5cb1bb935b More cleanup' 2025-11-25 15:03:33 -08:00
Reinier Criel
e03bceba88 Some cleanup 2025-11-25 14:37:31 -08:00
Reinier Criel
cab3a0aba3 Add uv (Astral Python package manager) support 
- Add uv package manager implementation following pip pattern
- Configure MITM proxy with CA bundle for PyPI packages
- Add shell integration (bash/zsh/fish/PowerShell)
- Conditional on --include-python flag
- Add 33 comprehensive E2E tests covering:
  - uv pip install/sync/compile commands
  - uv add for project dependencies
  - uv tool install for global tools
  - uv run --with for ephemeral dependencies
  - uv sync for project syncing
  - Malware blocking verification for all methods
- Update documentation and package.json
- Install uv in Docker test environment
 2025-11-25 14:10:20 -08:00
Sander Declerck
5b6fe659c2
Merge pull request #164 from AikidoSec/remove-safe-chain-bun 
Remove the safe-chain-bun package
 2025-11-25 16:07:23 +01:00
Sander Declerck
156522912e
Remove the safe-chain-bun package 2025-11-25 15:10:42 +01:00
Sander Declerck
1d50748f32
Merge pull request #163 from AikidoSec/remove-ora 
Remove ora dependency
 2025-11-25 15:07:45 +01:00
Sander Declerck
77e9d3d843
Fix e2e tests 2025-11-25 14:56:12 +01:00
Sander Declerck
c8df7566b5
Remove ora dependency 2025-11-25 14:22:31 +01:00
Sander Declerck
eac173dfa3
Update intro in README.md 2025-11-25 12:31:50 +01:00
Sander Declerck
d158e15c08
Merge pull request #159 from AikidoSec/publish-using-oidc 
Publish using OIDC
 2025-11-25 09:16:17 +01:00
Hans Ott
e976c28b8a Publish using OIDC 2025-11-24 18:45:14 +01:00
Sander Declerck
fb3a8582a2
Merge pull request #158 from AikidoSec/prevent-packagemanager-from-caching-modified-response 
Prevent package manager from caching modified response
 2025-11-24 18:37:44 +01:00
Sander Declerck
c695d0cb5d
Add explaining comment 2025-11-24 18:29:35 +01:00
Sander Declerck
5629b640cc
Prevent package manager from caching modified response 2025-11-24 18:16:09 +01:00
Sander Declerck
f6400e9822
Merge pull request #151 from AikidoSec/package-min-age 
npm: Minimum package age
 2025-11-24 16:14:02 +01:00
Sander Declerck
900bf8e6ea
Parse npm registry's timestamps. 2025-11-24 15:52:17 +01:00
Sander Declerck
ea75179143
Update readme to reflect our support for node 16+ and delete broken screenshot. 2025-11-24 15:31:30 +01:00
Sander Declerck
0a8dacda24
Add small comment on why we're removing the host header before forwarding. 2025-11-24 15:31:30 +01:00
Sander Declerck
faae0488c8
Undo small refactor 2025-11-24 15:31:30 +01:00
Sander Declerck
44ee58aa9b
Let modifyNpmInfoRequestHeaders return the header collection as well. 2025-11-24 15:31:30 +01:00
Sander Declerck
5834229427
Add comment in interceptorBuilder.js to clarify which api is for setup, and which api is used by the proxy. 2025-11-24 15:31:30 +01:00