npm - muaddib-scanner - Versions diffs - 2.11.23 → 2.11.32 - Mend

muaddib-scanner 2.11.23 → 2.11.32

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (17) hide show

package/README.md +3 -3
package/package.json +6 -7
package/self-scan-v2.11.32.json +1423 -0
package/src/ml/feature-extractor.js +421 -12
package/src/monitor/daemon.js +9 -3
package/src/monitor/ingestion.js +49 -103
package/src/monitor/queue.js +34 -41
package/src/monitor/tarball-archive.js +58 -3
package/src/monitor/webhook.js +36 -0
package/src/pipeline/executor.js +12 -3
package/src/pipeline/processor.js +12 -0
package/src/pipeline/scan-worker.js +6 -1
package/src/rules/index.js +12 -0
package/src/scanner/release-zero.js +46 -0
package/src/scanner/trusted-dep-diff.js +205 -0
package/src/scanner/typosquat.js +10 -2
package/src/scoring.js +22 -0

package/README.md CHANGED Viewed

@@ -275,7 +275,7 @@ With pre-commit framework:
 ```yaml
 repos:
   - repo: https://github.com/DNSZLSK/muad-dib
-    rev: v2.11.23
+    rev: v2.11.24
     hooks:
       - id: muaddib-scan
 ```
@@ -296,7 +296,7 @@ repos:
 | **FPR** (Benign random, v2.10.95 measure) | **7.0%** (14/200) | 200 random npm packages, stratified sampling |
 | **ADR** (Adversarial + Holdout) | **96.3%** (103/107) | 67 adversarial + 40 holdout (107 available on disk), global threshold=20 |
-**3594 tests** across 93 files. **234 rules** (229 RULES + 5 PARANOID).
+**3664 tests** across 93 files. **234 rules** (229 RULES + 5 PARANOID).
 > **ML retrain methodology (v2.10.51):**
 > - Ground truth: 377 confirmed_malicious via auto-labeler (OSSF malicious-packages, GitHub Advisory Database, npm registry takedown correlation)
@@ -344,7 +344,7 @@ npm test
 ### Testing
-- **3594 tests** across 93 modular test files
+- **3664 tests** across 93 modular test files
 - **56 fuzz tests** - Malformed inputs, ReDoS, unicode, binary
 - **Datadog 17K benchmark** - 14,587 confirmed malware samples (in-scope)
 - **Ground truth validation** - 67 real-world attacks (93.85% TPR@3, 86.2% TPR@20 — v2.10.95 measure)

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "muaddib-scanner",
-  "version": "2.11.23",
+  "version": "2.11.32",
   "description": "Supply-chain threat detection & response for npm & PyPI/Python",
   "main": "src/index.js",
   "bin": {
@@ -14,7 +14,8 @@
     "scan": "node bin/muaddib.js scan .",
     "update": "node bin/muaddib.js update",
     "lint": "eslint src bin --ext .js",
-    "compress-iocs": "node -e \"const fs=require('fs');const zlib=require('zlib');zlib.gzip(fs.readFileSync('src/ioc/data/iocs.json'),(e,b)=>{if(e)throw e;fs.writeFileSync('iocs.json.gz',b);console.log('Compressed: '+b.length+' bytes')})\""
+    "compress-iocs": "node -e \"const fs=require('fs');const zlib=require('zlib');zlib.gzip(fs.readFileSync('src/ioc/data/iocs.json'),(e,b)=>{if(e)throw e;fs.writeFileSync('iocs.json.gz',b);console.log('Compressed: '+b.length+' bytes')})\"",
+    "prepublishOnly": "node -e \"if(!process.env.CI){console.error('ERR: Publish via CI workflow (tag v* push). Local publishes are disabled.');process.exit(1)}\""
   },
   "keywords": [
     "security",
@@ -50,14 +51,12 @@
     "acorn": "8.16.0",
     "acorn-walk": "8.3.5",
     "adm-zip": "0.5.17",
-    "js-yaml": "4.1.1"
-  },
-  "overrides": {
-    "loadash": "0.0.0-security"
+    "js-yaml": "4.1.1",
+    "loadash": "^1.0.0"
   },
   "devDependencies": {
     "@eslint/js": "10.0.1",
-    "eslint": "10.3.0",
+    "eslint": "10.4.0",
     "eslint-plugin-security": "^4.0.0",
     "globals": "17.6.0"
   }