GitHub Repository

Pre-install malware guard for Python packages, plus blast-radius containment for agent workflows

7 starsPython

Pipguard – pre-install malware scanner for Python supply-chain attacks

Name: Pipguard – pre-install malware scanner for Python supply-chain attacks
Availability: InStock
Author: secondmod

by secondmod·Mar 24, 2026·2 points·0 comments

Visit Project View on HN

AI Analysis

●●●BangerSolve My Problem

Behavioral malware scanning before install, unlike pip-audit.

Strengths

•Detects behavioral malware patterns instead of just known vulnerabilities.
•Environment scrubbing reduces blast radius for AI agent workflows.

Weaknesses

•Competes with pip-audit and safety in supply-chain security space.

Similar Projects

Security●●Solid

Pytest tests catching Python supply chain attacks (litellm .pth vector)

Catches .pth injection vectors from the litellm attack when Snyk and Dependabot miss them.

Dark HorseSolve My Problem

qualitymax

202mo ago

Security●Mid

Lateos/NPM-scan – open-source NPM supply chain scanner, v0.18.3

NPM supply chain scanner competing against Socket, Snyk, and npm audit.

Ship It

lateos-ai

1011d ago

Security●●Solid

Agentsec – Security scanner for AI agent installations (MCP, OpenClaw)

Bundles CI-friendly scanners that target agent-specific risks: 17 patterned secret detectors, prompt-injection and instruction‑malware heuristics, tool/SSRF and MCP auth checks, plus SARIF/JSON outputs for integration. Findings map to the OWASP Top 10 for Agentic Applications (2026) and it adds 'harden' profiles to apply safer defaults to OpenClaw/MCP installs — practical, focused ops tooling rather than a generic secret-finder.

Niche GemSolve My Problem

debu_sinha_1

233mo ago

Security●●●●Gem