milliways-infosec/AikidoSec-safe-chain
7
0
Fork 0
mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 20:20:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
1065 commits 61 branches 106 tags 3.3 MiB
Commit graph

98 commits

Author SHA1 Message Date
Chris Ingram
1eb4fe05fd Add pdm package manager support 
PDM is a modern Python package manager using pyproject.toml (PEP 621).
Uses the same MITM-only proxy approach as poetry/uv/pipx — all malware
detection and minimum package age enforcement happens at the proxy layer
by intercepting PyPI requests.
 2026-04-06 13:01:42 +01:00
bitterpanda
da9e3d475e
Merge pull request #365 from 123Haynes/main 
add a configuration option for custom malwaredb and newpackagelist urls.
 2026-04-03 02:26:34 +02:00
Reinier Criel
4564b7f607 Initial 2026-04-01 14:32:36 -07:00
123Haynes
1abe5932ad add a configuration option for custom malwaredb and newpackagelist urls. 2026-03-31 11:52:26 +00:00
Reinier Criel
fd6fb456b4 Add minimum package age check for pypi 2026-03-28 10:15:13 -07:00
Reinier Criel
e9db22eb50 Merge branch 'main' into feature/minimum-package-age-from-list 2026-03-26 14:37:07 -07:00
Sander Declerck
d113ca3061
Increase default min package age to 48 hours 2026-03-25 16:19:15 +01:00
Reinier Criel
07e315a382 Adapt doc 2026-03-19 16:07:31 -07:00
Sander Declerck
cfaa8e45ad
Move config file to .safe-chain path. 2026-03-19 16:10:32 +01:00
Sander Declerck
86ae23332e
Merge pull request #315 from AikidoSec/gitlab-ci-cd 
Document CI/CD for GitLab
 2026-02-05 14:11:20 +01:00
Sander Declerck
8ea4463ac5
Update troubleshooting link 2026-02-05 11:38:28 +01:00
Sander Declerck
90eba0a0b6
Document CI/CD for GitLab 2026-02-04 14:04:46 +01:00
Sander Declerck
6c814ff82f
Only allow wildcards for scoped packages (@scope/*) 2026-01-15 15:13:00 +01:00
Sander Declerck
884cb6e026
Allow trailing * for wildcard matching 2026-01-14 17:51:41 +01:00
Sander Declerck
6815b62019
Allow to exclude packages from the minimum package age 2026-01-14 17:41:23 +01:00
Robert Slootjes
b25d405972
Add Bitbucket Pipelines example 2026-01-13 08:19:10 +01:00
Sander Declerck
20994c1834
Document to configure loglevel through env variables. 2026-01-12 11:01:54 +01:00
Sander Declerck
e8f993623b
Add troubleshooting docs 2026-01-06 15:48:15 +01:00
Sander Declerck
d7d5bacd21
Remove warning from readme 2026-01-06 10:53:32 +01:00
Sander Declerck
8bfbe1c77d
Merge pull request #232 from galargh/pip-custom-registries 
feat: allow python custom registries configuration
 2026-01-05 14:01:51 +01:00
Sander Declerck
74c57cd86a
Merge pull request #262 from AikidoSec/safe-chain-verify-command 
Add command to verify safe-chain is intercepting the package managers commands
 2026-01-05 09:10:05 +01:00
Reinier Criel
bc4370348f Adapt per review 2025-12-30 11:19:00 -08:00
Reinier Criel
8d0dcd0068 Small fix 2025-12-30 10:11:25 -08:00
Reinier Criel
7bfbe1376b Jenkins CI pipeline 2025-12-30 09:22:03 -08:00
galargh
c53a7347e2 feat: allow python custom registries configuration through config file 2025-12-22 13:49:45 +01:00
Sander Declerck
b571aad6a0
Add command to verify safe-chain is intercepting the package managers commands 2025-12-19 16:18:21 +01:00
Sander Declerck
e88f3f9c7c
Merge pull request #260 from AikidoSec/demo-video 
Add demo gif to readme again
 2025-12-19 11:01:33 +01:00
Sander Declerck
120e12fd34
Merge pull request #259 from AikidoSec/configure-custom-npm-registries 
Allow to configure custom/private npm registries
 2025-12-19 10:42:51 +01:00
Sander Declerck
5fec230181
Also commit readme 2025-12-19 10:42:17 +01:00
Reinier Criel
bbf5f8189b
Merge pull request #256 from AikidoSec/feature/pipx-2 
Add PIPX support
 2025-12-19 09:41:00 +01:00
Sander Declerck
41cc24d1f5
Allow to configure custom/prinvate npm registries 2025-12-18 13:52:49 +01:00
Reinier Criel
dbc7272fb4 Some cleanup 2025-12-18 10:43:27 +01:00
Reinier Criel
d2fc531c81 Fix tests and add command support 2025-12-18 10:33:31 +01:00
Reinier Criel
50ed2a9a7f Merge branch 'main' into feature/circle-ci 2025-12-17 14:02:07 +01:00
Reinier Criel
8c929f65e2 Update README 2025-12-17 13:51:56 +01:00
Reinier Criel
3c18ad76f7 Skeleton 2025-12-17 11:37:51 +01:00
Sander Declerck
e6cfa65ee2
Document release scripts 2025-12-16 16:09:57 +01:00
Reinier Criel
eefcb5a2aa Another adaptation in README 2025-12-15 18:54:54 +01:00
Reinier Criel
a99762fc28 Some more doc updates 2025-12-15 16:14:48 +01:00
Reinier Criel
7e460e50e1 Skeleton 2025-12-15 15:06:00 +01:00
Sander Declerck
dace5f3845
PR comments: handle unix on pwsh, update readme, rename variable in unix script 2025-12-10 13:48:07 +01:00
Reinier Criel
890fee83ad Update README 2025-12-03 13:29:24 -08:00
Sander Declerck
b64d84c252
Hard-code links and remove outdated information from readme 2025-12-03 15:54:03 +01:00
Sander Declerck
3595e87cd6
Merge pull request #185 from AikidoSec/safe-chain-binaries 
Safe-chain: create standalone binaries
 2025-12-03 13:27:45 +01:00
Hans Ott
b7453c6700
Add NPM version and downloads badges 2025-12-02 19:05:05 +01:00
Sander Declerck
9e1bdd4a31
Update docs: migration guide 2025-12-02 11:57:23 +01:00
Sander Declerck
c4a33ca151
Update readme.md 2025-12-02 10:30:59 +01:00
Hans Ott
3140dcc071 Add banner for safe-chain 2025-11-26 17:40:18 +01:00
Sander Declerck
a57c37b58d
Merge pull request #176 from AikidoSec/min-package-age-configuration 2025-11-26 17:24:25 +01:00
Sander Declerck
9b5b3cad22
Rename the environment variable 2025-11-26 16:47:46 +01:00