Dependency Combobulator
-
Updated
Jan 10, 2024 - Python
#
dependency-confusion
Here are 26 public repositories matching this topic...
Dependency Confusion Security Testing Tool
-
Updated
Jul 21, 2022 - Python
DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
-
Updated
Nov 21, 2021 - Go
tool for checking potential dependency confusion
-
Updated
Jul 5, 2025 - Go
A tool to investigate Dependency Confusion in Artifactory
-
Updated
May 15, 2025 - Java
Detect potential typosquatting packages across package ecosystems
-
Updated
Apr 8, 2026 - Ruby
## Auto-archived due to inactivity. ## Yorkshire is your friend, yorkshire checks Python's requirements files for a possible dependency confusion.
-
Updated
Sep 15, 2023 - Python
Python-based tool for identifying potential dependency confusion vulnerabilities in JavaScript (`package.json`) and Python (`requirements.txt`) projects
-
Updated
Nov 12, 2024 - Python
npm PoC packages
npm dependency-injection cybersecurity bug-bounty infosec bugbounty npmjs cyber-security rce-exploit dependency-confusion bug-bounty-tools
-
Updated
Mar 25, 2024 - JavaScript
High-performance Go tool for detecting Dependency Confusion vulnerabilities by scanning JavaScript files and checking unclaimed packages on npm registry.
-
Updated
Mar 29, 2026 - Go
Demonstration of Dependency Confusion applied to .NET and NuGet
-
Updated
Jul 18, 2024 - C#
Simple bash dependency confusion checker (npm, python and ruby)
-
Updated
Jan 8, 2024 - Shell
Chrome extension to detect dependency confusion vulnerabilities in GitHub repositories (NPM, PyPI, Ruby)
chrome-extension npm bug-bounty security-tools supply-chain-security dependency-confusion bug-bounty-tools
-
Updated
Mar 6, 2026 - JavaScript
Project to handle requests from malicious PoC of Dependency Confusion or Similar Name packages. Also can be used to generate those packages (gem, npm, pip).
-
Updated
Jun 22, 2024 - Python
DependencyConfusion is tool used for finding any library used by the project that might be vulnerable to dependency confusion attack.
-
Updated
Aug 23, 2022 - Go
Compilation of articles and utils about Software Supply Chain Security
vulnerability-management sca package-management devsecops software-composition-analysis oss-compliance sbom supply-chain-security dependency-confusion supply-chain-attacks software-supply-chain-security dependency-confusion-attack revival-hijack
-
Updated
Jul 27, 2025 - Python
Agentic install-time supply-chain security for npm and PyPI. Multi-agent verdicts, local registry proxy, honest Wilson-CI benchmarks.
cli security-tool supply-chain-security dependency-scanner dependency-confusion typosquat agentic-ai npm-security shai-hulud pypi-security
-
Updated
Apr 19, 2026 - TypeScript
Identify potential dependency confusion risks by scanning package.json files
-
Updated
Nov 21, 2024 - Go
Claude Code skill that hardens package manager configs against supply chain attacks. Run /harden once, it detects what you have and secures it.
package-manager supply-chain-security developer-security dependency-confusion claude-code npm-security claude-code-skill pip-security
-
Updated
Apr 3, 2026
Improve this page
Add a description, image, and links to the dependency-confusion topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the dependency-confusion topic, visit your repo's landing page and select "manage topics."