MUADDIB Scanner

Version updated for https://github.com/DNSZLSK/muad-dib to version v2.10.94.

• This action is used across all versions by 1 repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

MUAD’DIB is a security-focused GitHub Action designed to detect and analyze threats in npm and PyPI packages, addressing the growing issue of supply chain attacks in software dependencies. It automates threat detection using 14 parallel scanners, machine learning classifiers, and a sandbox environment to identify known malicious packages and suspicious behaviors. Key capabilities include pre-installation threat scans, risk scoring, detailed detection explanations, and exporting results in various formats, making it a powerful first-line defense for developers.

What’s Changed

function_runtime_args (csec), external_tarball_dep (ltidi), ping/nslookup/dig exfil, 2-CRITICAL floor 75

• DNSZLSK
• GitHub Actions