npm - @testzugang/pi-plugin-dependency-audit - Versions diffs - 0.1.0 - Mend

@testzugang/pi-plugin-dependency-audit 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

package/skills/dependency-audit/rules/iocs.txt ADDED Viewed

@@ -0,0 +1,23 @@
+# npm/TypeScript supply-chain IOC seeds.
+# One indicator per line. hxxp and [.] are normalized by scripts/npm_ts_static_triage.py.
+# Campaign context: SafeDep report from 2026-05-12 on TanStack/Mistral/mini-shai-hulud.
+hxxp://filev2[.]getsession[.]org/file/
+getsession[.]org
+hxxp://169[.]254[.]169[.]254/latest/meta-data/iam/security-credentials/
+hxxp://127[.]0[.]0[.]1:8200
+hxxps://github[.]com/oven-sh/bun/releases/download/bun-v1.3.13/
+hxxps://git-tanstack[.]com/transformers.pyz
+git-tanstack[.]com
+transformers.pyz
+tanstack_runner.js
+router_init.js
+router_runtime.js
+.claude/settings.json
+.claude/setup.mjs
+.vscode/tasks.json
+.vscode/setup.mjs
+createCommitOnBranch
+@tanstack/setup
+tanstack/router#79ac49eedf774dd4b0cfa308722bc463cfe5885c
+79ac49eedf774dd4b0cfa308722bc463cfe5885c
+ce7e4199506959fd7a71b64209b2c07b9c82e53a946aa7d78298dc9249230d01

package/skills/dependency-audit/rules/review-policy.md ADDED Viewed

@@ -0,0 +1,38 @@
+# npm/TypeScript review policy
+## Block by default
+Block use until human review when any of these are present:
+- Install-phase lifecycle script: `preinstall`, `install`, `postinstall`, `prepublish`, `prepare`, `dependencies`.
+- Git/URL/File/Alias dependency in `optionalDependencies`.
+- Git dependency not pinned to a full 40-character commit SHA.
+- Lockfile entry with `hasInstallScript: true` that is not on an explicit allowlist.
+- Remote tarball URL outside the approved registry list.
+- Missing integrity for registry tarballs.
+- Obfuscated JS/TS in lifecycle-referenced files or package root.
+- Native binary artifacts without provenance and reproducible-build documentation.
+- GitHub Actions workflow with untrusted PR code plus write/publish/OIDC permissions.
+## Quarantine
+Quarantine and do not install when any of these are present:
+- Known IOC from `rules/iocs.txt`.
+- Download+execute chain.
+- Credential access plus network or GitHub write API.
+- Cloud metadata / Vault / local token harvesting.
+- IDE/AI-agent config persistence in package tarball.
+- Live token or private credential in published package/repo.
+- Tarball path traversal.
+## Allowlist evidence required
+For each allowlisted exception, record:
+- Package name/version or repo commit.
+- Exact file and line.
+- Why the behavior is required.
+- Owner approving the exception.
+- Expiration/review date.
+- Safer alternative considered.