`lavamoat` is a NodeJS runtime where modules are defined in [SES][SesGithub] Compartments. It aims to reduce the risk of malicious code in the app dependency graph, known as "software supply chain attacks".
LavaMoat kernel and utils
Common types for LavaMoat packages
LavaMoat packer
browserify plugin for sandboxing dependencies with LavaMoat
LavaMoat React Native lockdown for running Hardened JavaScript in React Native apps
This is the TOFU (trust-on-first-use) static analysis tool used by LavaMoat to automatically generate useable config
LavaMoat Webpack plugin for running dependencies in Compartments without eval
This is a dashboard for exploring a dependency graph and LavaMoat policy file
Next-gen LavaMoat for Node.js
A tool for running only the dependency lifecycle hooks specified in an allowlist.
LavaMoat's secure package naming convention
Worried about accidentally running `yarn` or `npm` with script hooks enabled such as `preinstall` or `postinstall`?
standardize how to recursively own newborn windows within a web app, from the context of the app itself
Opinionated dependency linter for your git/github dependencies
CLI utilities for LavaMoat
lavatube
Map all the things, check all the maps
No description provided.
No description provided.
The MetaMask Stake SDK
starts a server that evals any code sent to it. this is dangerous. This is a demonstration of the dangers, and the protections [LavaMoat](https://github.com/lavamoat/lavamoat) can provide.
For hardened libraries, regardless of hardened environments
Publish multiple workspaces (that's all)
A WebSocket Manager that facilitates secure communication between parties for multi party computation applications.
Run any command in a secret-aware OS-level sandbox