Concepedia

Publication | Open Access

On the Feasibility of Cross-Language Detection of Malicious Packages in npm and PyPI

DOIFull Paper Access

16

Citations

15

References

2023

Year

Piergiorgio Ladisa, Serena Elisa Ponta, Nicola Ronzoni, Matías Martínez, Olivier Barais
Annual Computer Security Applications Conference

Abstract

Current software supply chains heavily rely on open-source packages hosted in public repositories. Given the popularity of ecosystems like npm and PyPI, malicious users started to spread malware by publishing open-source packages containing malicious code.

References

YearCitations

Page 1