Version updated for https://github.com/brennhill/sloppy-joe to version v1. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary Sloppy Joe is a CI tool designed to detect and block compromised, typosquatted, or non-canonical dependencies across multiple ecosystems (e.g., npm, PyPI, Cargo) before they are installed, preventing supply chain attacks. It automates dependency validation using configurable rules, ensuring only trusted and vetted packages are used in production.