AikidoSec-safe-chain

mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 20:20:49 +00:00

Author	SHA1	Message	Date
Sander Declerck	752504dcc8	Add --safe-chain-skip-minimum-package-age cli flag	2025-11-13 16:04:24 +01:00
Sander Declerck	f64ee3bccf	Add skipMinimumPackageAge.	2025-11-13 15:14:44 +01:00
Sander Declerck	a9a4d76705	Fix type error in modifyNpmInfo.js	2025-11-13 15:08:36 +01:00
Sander Declerck	6ae93686b7	Finish npm info modification.	2025-11-13 14:51:57 +01:00
Reinier Criel	fbd11c6d44	Update	2025-11-12 14:01:06 -08:00
Reinier Criel	285906ea9d	Update doc	2025-11-12 13:39:58 -08:00
Reinier Criel	f215368c4a	Some small fixes	2025-11-12 13:30:22 -08:00
Reinier Criel	fdef9e0766	Some tweaks	2025-11-12 13:11:02 -08:00
Sander Declerck	3b905d490b	Merge branch 'main' into package-min-age	2025-11-12 14:42:19 +01:00
bitterpanda	bb0d06cdfc	Merge pull request #144 from AikidoSec/only-write-stdout-when-safe-chain-audited Add interceptors for MITM	2025-11-12 14:27:27 +01:00
Sander Declerck	27bf768cc6	Remove blockResponse function entirely	2025-11-12 14:12:45 +01:00
Sander Declerck	d8007f6236	Cleanup interceptorBuilder.js	2025-11-12 14:07:35 +01:00
Sander Declerck	ad6d9bcdd5	Simplify interceptor code and rename variables for clarity.	2025-11-12 14:03:33 +01:00
Sander Declerck	2cf23d5109	Don't expose blockRequest	2025-11-12 13:43:47 +01:00
Sander Declerck	8bd2ace3db	Remove too new packages from npm response	2025-11-12 13:39:17 +01:00
Reinier Criel	f2bf5869ba	Fix linting issue	2025-11-11 15:49:25 -08:00
Reinier Criel	a3d57cbd24	Cleanup	2025-11-11 15:24:59 -08:00
Reinier Criel	6bcd3d3b8f	Make sure we don't override any environments	2025-11-11 15:22:06 -08:00
Reinier Criel	f9d241e474	Fix unused import	2025-11-11 14:32:12 -08:00
Reinier Criel	6a94271a10	Do not add list of trusted hosts, is security risk	2025-11-11 14:28:31 -08:00
Reinier Criel	9b102412af	Add extra ENV vars	2025-11-11 10:37:39 -08:00
Sander Declerck	3bf7279195	Implement modification of request headerrs	2025-11-07 16:16:37 +01:00
Sander Declerck	76a1100b8c	Fix linter issues	2025-11-07 11:42:53 +01:00
Sander Declerck	1f570a9f39	Keep track of amount of malware packages blocked	2025-11-07 11:39:41 +01:00
Sander Declerck	f4694ba119	Move npm and pip mitm interception to separate files	2025-11-07 10:10:27 +01:00
Reinier Criel	d3a4f81b3c	More cleanup	2025-11-06 13:44:34 -08:00
Reinier Criel	61a53b24fd	Some cleanup	2025-11-06 13:24:00 -08:00
Reinier Criel	a293c76ed9	Add better logging	2025-11-06 12:53:24 -08:00
Reinier Criel	e88aede939	Remove some debug logging	2025-11-06 12:25:55 -08:00
Reinier Criel	032fc3847f	Fix args	2025-11-06 11:09:28 -08:00
Reinier Criel	9bd29056c6	Some cleanup	2025-11-06 11:02:03 -08:00
Reinier Criel	a6956db8dc	Remove debug log	2025-11-06 10:27:49 -08:00
Reinier Criel	28d24bb6ea	Another iteration	2025-11-06 10:26:26 -08:00
Sander Declerck	e251908cb3	Add interceptors for MITM	2025-11-06 18:01:20 +01:00
Reinier Criel	f400c5576a	WIP	2025-11-06 08:32:25 -08:00
Reinier Criel	7cff2818e4	Fix Windows template	2025-11-05 15:40:54 -08:00
Reinier Criel	35bd3dfb6f	Merge branch 'main' into feature/pypi-ci	2025-11-05 10:35:59 -08:00
Reinier Criel	3b56a0181f	Update comment	2025-11-05 09:55:09 -08:00
Reinier Criel	87606def48	Fix comments	2025-11-05 09:18:18 -08:00
Reinier Criel	3cfe00e535	Merge branch 'main' into feature/pypi-remove-args-parsing	2025-11-05 09:01:57 -08:00
Reinier Criel	f0a3ae51db	Only use mitm for pip packages	2025-11-05 08:34:40 -08:00
Sander Declerck	378b0ac7c9	Rename verifiedPackages to totalPackages, fix e2e tests	2025-11-05 12:19:47 +01:00
Sander Declerck	e4c40330f7	Only write to stdout when safe-chain audited packages	2025-11-05 12:01:08 +01:00
Reinier Criel	03312cd707	Clean up logging	2025-11-04 14:34:26 -08:00
Reinier Criel	58a5e837f7	Add unit tests	2025-11-04 13:32:07 -08:00
Reinier Criel	6241c56fda	Skeleton for CI support	2025-11-04 13:29:31 -08:00
Reinier Criel	2b6b9b6737	Cleanup comments	2025-11-04 06:59:45 -08:00
Reinier Criel	d789491561	Merge branch 'main' into feature/pypi	2025-11-04 06:54:00 -08:00
Sander Declerck	497401e8e0	Remove yarn version check	2025-11-04 13:18:36 +01:00
Sander Declerck	3ea4e82acb	Write a warning if no version was returned from the malware download, causing the malware db not to be cached.	2025-11-04 11:26:07 +01:00

1 2 3 4 5 ...

281 commits