Packj

Packj is a security tool that analyzes open-source packages for potential security risks, supply chain attacks, and malicious behaviors. It helps developers vet dependencies before using them in projects, reducing vulnerabilities in software development.

Features

Scans open-source packages for security vulnerabilities
Detects supply chain attacks by analyzing package behaviors
Identifies typosquatting risks to prevent installing malicious lookalike packages
Provides a detailed risk report with security insights
Works with npm, PyPI, and other ecosystems for broad coverage
Integrates with CI/CD pipelines for automated security checks

Project Samples

Project Activity

See All Activity >

License

Affero GNU Public License

Follow Packj

Packj Web Site

User Reviews

Be the first to post a review of Packj!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

Python

Related Categories

Python Package Managers

Registered

2025-03-03

Similar Business Software

AnyTree

Introducing AnyTree — the first software deployment system secured by the blockchain. On AnyTree, whatever apps developers distribute or use, are delivered exactly as they are supposed to be. The Software Supply Chain is a high-impact area. Yet there exists a distinctive lack of secure,...

See Software
npm

We're npm, Inc., the company behind Node package manager, the npm Registry, and npm CLI. We offer those to the community for free, but our day job is building and selling useful tools for developers like you. Get started today for free, or step up to npm Pro to enjoy a premium JavaScript...

See Software
Fink

The Fink project wants to bring the full world of Unix open source software to Darwin and Mac OS X. We modify Unix software so that it compiles and runs on Mac OS X ("port" it) and make it available for download as a coherent distribution. Fink uses Debian tools like dpkg and apt-get to provide...

See Software
Yarn

Yarn is a package manager which doubles down as project manager. Whether you work on one-shot projects or large monorepos, as a hobbyist or an enterprise user, we've got you covered. Split your project into sub-components kept within a single repository. Yarn guarantees that an install that...

See Software
Zero Install

A decentralized cross-platform software installation system. Works on Linux, Windows and macOS. Fully open-source. Run apps with a single click. Run applications without having to install them first. Control everything from a command line or graphical interface. You control your own computer....

See Software
Google Cloud Artifact Registry

Artifact Registry is Google Cloud’s unified, fully managed package and container registry designed for high-performance artifact storage and dependency management. It centralizes hosting of container images (Docker/OCI), Helm charts, language packages (Java/Maven, Node.js/npm, Python), and OS...

See Software

Report inappropriate content

Packj

Stops Solarwinds-, ESLint-, and PyTorch-like attacks

Get an email when there's a new version of Packj

Features

Project Samples

Project Activity

Categories

License

Follow Packj

User Reviews

Additional Project Details

Operating Systems

Programming Language

Related Categories

Registered