PACO – Package Confuser 3.1
Detect dependency confusion risks in GitHub repositories.
3 followers
Detect dependency confusion risks in GitHub repositories.
3 followers
)
🧩 PACO (Package Confuser) is a Chrome extension that scans GitHub repositories to detect missing, unpublished, or risky dependencies that could lead to dependency confusion attacks.
It automatically analyzes dependency files such as package.json (NPM), requirements.txt (Python), and Gemfile (Ruby) to identify potential supply-chain risks.
Built for developers, maintainers, DevOps teams, and security researchers.
🔗 https://github.com/anurag6240/PACO-Package-Confuser
