Packj

Packj is a security tool that analyzes open-source packages for potential security risks, supply chain attacks, and malicious behaviors. It helps developers vet dependencies before using them in projects, reducing vulnerabilities in software development.

Features

Scans open-source packages for security vulnerabilities
Detects supply chain attacks by analyzing package behaviors
Identifies typosquatting risks to prevent installing malicious lookalike packages
Provides a detailed risk report with security insights
Works with npm, PyPI, and other ecosystems for broad coverage
Integrates with CI/CD pipelines for automated security checks

Project Samples

Project Activity

See All Activity >

License

Affero GNU Public License

Follow Packj

Packj Web Site

Other Useful Business Software

Run Any Workload on Compute Engine VMs

From dev environments to AI training, choose preset or custom VMs with 1–96 vCPUs and industry-leading 99.95% uptime SLA.

Compute Engine delivers high-performance virtual machines for web apps, databases, containers, and AI workloads. Choose from general-purpose, compute-optimized, or GPU/TPU-accelerated machine types—or build custom VMs to match your exact specs. With live migration and automatic failover, your workloads stay online. New customers get $300 in free credits.

Try Compute Engine

Rate This Project

User Reviews

Be the first to post a review of Packj!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

Python

Related Categories

Python Package Managers

Registered

2025-03-03

Similar Business Software

eAuditor Cloud

eAuditor Cloud is a comprehensive SaaS platform for IT asset management, monitoring, security, and data protection. With more than 20 years of experience in corporate and public sector environments, it combines proven functionality with the accessibility and scalability of the cloud. The system...

See Software
AnyTree

Introducing AnyTree — the first software deployment system secured by the blockchain. On AnyTree, whatever apps developers distribute or use, are delivered exactly as they are supposed to be. The Software Supply Chain is a high-impact area. Yet there exists a distinctive lack of secure,...

See Software
Yarn

Yarn is a package manager which doubles down as project manager. Whether you work on one-shot projects or large monorepos, as a hobbyist or an enterprise user, we've got you covered. Split your project into sub-components kept within a single repository. Yarn guarantees that an install that...

See Software
npm

We're npm, Inc., the company behind Node package manager, the npm Registry, and npm CLI. We offer those to the community for free, but our day job is building and selling useful tools for developers like you. Get started today for free, or step up to npm Pro to enjoy a premium JavaScript...

See Software
Fink

The Fink project wants to bring the full world of Unix open source software to Darwin and Mac OS X. We modify Unix software so that it compiles and runs on Mac OS X ("port" it) and make it available for download as a coherent distribution. Fink uses Debian tools like dpkg and apt-get to provide...

See Software
Homebrew

The missing package manager for macOS (or Linux). The script explains what it will do and then pauses before it does it. Homebrew installs the stuff you need that Apple (or your Linux system) didn’t. Homebrew installs packages to their own directory and then symlinks their files into /usr/local...

See Software