Find malware in your open source Supply Chain

Quickly identify malicious packages with our API, enable real-time scanning to detect malicious malware and packages.

Harness our research and expertise through an API

Our analysis engines and researchers continuously search for malware, so you can query your dependencies against our extensive database of known malicious packages and suspicious behavior patterns.

On demand queries, when you need it

Whether manually checking a new library, testing in your CI/CD pipelines or investigating an incident our API can help you quickly identify harmful packages and focus on remediation and fixes!

Easy Integration

Use our simple REST API with example implementations for major package managers.

> curl -H "X-API-Key: mat-YOUR_TOKEN" https://api.maliciouspackages.com/package/npm/%40solana%2Fweb3.js

Save time

You could manally check packages and research, build your own database, but your time is valuable, and you probably have a day job. Let us help you focus on either building more secure apps, getting accurate data in an incident or assesing your landscape.

Contextual package information

Get all the available intel we have researched, and collated to understand the impact to you.

Join the Private Beta

We're currently accepting organizations into our private beta program. Contact us to secure early access and help shape the future of malware detection in the software supply chain.

Contact for Beta Access