Version updated for https://github.com/homeofe/supply-chain-guard to version v5.2.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The Supply Chain Guard GitHub Action is an open-source security scanner designed to detect and mitigate risks in software supply chains across various ecosystems, including npm, PyPI, Docker, and GitHub repositories. It automates the identification of malware campaigns, supply chain attacks, credential leaks, and infrastructure vulnerabilities while generating comprehensive software bills of materials (SBOMs) and verifying SLSA provenance.

Version updated for https://github.com/homeofe/supply-chain-guard to version v5.1.1. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary supply-chain-guard is an open-source supply chain security scanner designed to detect and mitigate threats across various ecosystems such as npm, PyPI, Docker, GitHub Actions, and more. It automates the identification of malware, supply chain attacks, credential leaks, and repository trust issues, while also generating CycloneDX SBOMs and verifying SLSA provenance.

Version updated for https://github.com/homeofe/supply-chain-guard to version v3.1.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The GitHub Action “supply-chain-guard” is an open-source security scanner designed to detect and prevent software supply-chain attacks targeting npm, PyPI, VS Code extensions, GitHub Actions workflows, and Solana blockchain environments. It identifies threats such as malware campaigns, obfuscated code execution, typosquatting, malicious install scripts, and command-and-control patterns, automating the detection of risks that traditional security tools may overlook.

Version updated for https://github.com/homeofe/supply-chain-guard to version v3.0.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The supply-chain-guard GitHub Action is an open-source security scanner designed to detect and mitigate software supply-chain threats across npm, PyPI, VS Code extensions, GitHub Actions workflows, and Solana environments. It automates the identification of malicious indicators, such as obfuscated code, suspicious scripts, typosquatting, and command-and-control patterns, offering a targeted approach to catching threats that traditional scanners may overlook.

Version updated for https://github.com/homeofe/supply-chain-guard to version v2.0.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The supply-chain-guard GitHub Action is an open-source security scanner designed to detect and mitigate software supply-chain threats in npm, PyPI, and VS Code extensions. It automates the identification of advanced malware campaigns, suspicious code patterns, and indicators of compromise (e.