npm_sentinel
v0.3.0crates.io· RustA CLI tool to detect supply chain attacks in npm packages by analyzing lifecycle scripts, dependencies, and registry metadata.
The verdict
Maintained. Niche but maintained, actively maintained.
Live from the crates.io registry · derived rules, not AI
How it scores
MaintenanceHealthy
PopularityNiche
SecurityClean
LicensePermissive
DepsZero deps
Maintenance
Last published this month.
Popularity
2 downloads / week
Security
No known advisories for this version (OSV).
License
MIT
Dependencies
No runtime dependencies
Recent releases
- 0.3.0this month
- 0.2.06 months ago
- 0.1.06 months ago