npm - muaddib-scanner - Versions diffs - 2.2.21 → 2.2.23 - Mend

muaddib-scanner 2.2.21 → 2.2.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (151) hide show

package/datasets/benign/packages-npm.txt DELETED Viewed

@@ -1,597 +0,0 @@
-# MUAD'DIB Benign Dataset — 500+ popular npm packages
-# Used by `muaddib evaluate` to measure False Positive Rate (FPR)
-# Threshold: score > 20 = false positive
-# Organized by category to ensure coverage of FP-prone patterns
-# === Frameworks web (25) ===
-express
-koa
-fastify
-hapi
-@nestjs/core
-@nestjs/common
-next
-nuxt
-remix
-gatsby
-sails
-restify
-polka
-micro
-moleculer
-feathers
-loopback
-adonis
-strapi
-keystone
-redwood
-blitz
-meteor
-derby
-total.js
-# === Bibliothèques UI (25) ===
-react
-react-dom
-vue
-@angular/core
-@angular/common
-svelte
-preact
-lit
-solid-js
-alpine
-stimulus
-mithril
-inferno
-hyperapp
-riot
-stencil
-ember-source
-backbone
-marionette
-polymer
-qwik
-htmx.org
-petite-vue
-million
-nano-jsx
-# === Build tools (35) ===
-webpack
-webpack-cli
-webpack-dev-server
-vite
-esbuild
-rollup
-parcel
-@swc/core
-@swc/cli
-tsup
-unbuild
-babel-core
-@babel/core
-@babel/cli
-@babel/preset-env
-@babel/preset-typescript
-@babel/preset-react
-@babel/plugin-transform-runtime
-terser
-uglify-js
-html-webpack-plugin
-css-loader
-style-loader
-file-loader
-mini-css-extract-plugin
-postcss-loader
-sass-loader
-less-loader
-ts-loader
-babel-loader
-copy-webpack-plugin
-clean-webpack-plugin
-webpack-merge
-webpack-bundle-analyzer
-speed-measure-webpack-plugin
-# === CLI tools (30) ===
-commander
-yargs
-inquirer
-@inquirer/prompts
-chalk
-ora
-meow
-oclif
-vorpal
-caporal
-gluegun
-prompts
-listr2
-tasuku
-cac
-citty
-cleye
-arg
-mri
-minimist
-nopt
-get-stdin
-update-notifier
-boxen
-terminal-link
-figures
-log-symbols
-cli-table3
-cli-progress
-blessed
-# === Testing (25) ===
-jest
-mocha
-vitest
-ava
-tap
-jasmine
-karma
-c8
-nyc
-istanbul
-sinon
-chai
-expect
-supertest
-nock
-msw
-@testing-library/react
-@testing-library/jest-dom
-@testing-library/dom
-@testing-library/vue
-enzyme
-storybook
-@storybook/react
-playwright
-cypress
-# === Database (25) ===
-pg
-mysql2
-sqlite3
-better-sqlite3
-mongoose
-sequelize
-prisma
-@prisma/client
-drizzle-orm
-knex
-typeorm
-mikro-orm
-objection
-bookshelf
-waterline
-ioredis
-redis
-mongodb
-cassandra-driver
-couchbase
-neo4j-driver
-arangojs
-level
-lmdb
-sql.js
-# === Linters/formatters (18) ===
-eslint
-prettier
-stylelint
-@biomejs/biome
-oxlint
-eslint-plugin-react
-eslint-plugin-import
-eslint-plugin-security
-eslint-config-airbnb
-eslint-config-standard
-eslint-plugin-vue
-eslint-plugin-node
-eslint-plugin-jest
-@typescript-eslint/parser
-@typescript-eslint/eslint-plugin
-eslint-plugin-prettier
-editorconfig
-markdownlint-cli
-# === Monorepo tools (12) ===
-turbo
-nx
-lerna
-@changesets/cli
-@changesets/changelog-github
-rush
-bolt
-pnpm
-yarn
-npm
-oao
-ultra-runner
-# === Wasm/native (12) ===
-sharp
-canvas
-node-gyp
-@napi-rs/cli
-node-addon-api
-prebuild
-prebuild-install
-node-pre-gyp
-nan
-ref-napi
-ffi-napi
-farmhash
-# === DevOps/CI (18) ===
-husky
-lint-staged
-semantic-release
-commitlint
-@commitlint/cli
-@commitlint/config-conventional
-conventional-changelog
-standard-version
-release-it
-auto
-np
-gh-pages
-vercel
-netlify-cli
-wrangler
-pm2
-forever
-nodemon
-# === Crypto/security (18) ===
-bcrypt
-bcryptjs
-jsonwebtoken
-jose
-helmet
-cors
-csurf
-passport
-passport-local
-passport-jwt
-passport-google-oauth20
-crypto-js
-tweetnacl
-libsodium-wrappers
-node-forge
-argon2
-scrypt
-express-rate-limit
-# === HTTP/networking (25) ===
-axios
-got
-node-fetch
-undici
-superagent
-ky
-bent
-phin
-needle
-request
-urllib
-ws
-socket.io
-socket.io-client
-@grpc/grpc-js
-@grpc/proto-loader
-http-proxy
-http-proxy-middleware
-express-http-proxy
-cors-anywhere
-tunnel
-agent-base
-https-proxy-agent
-socks-proxy-agent
-proxy-agent
-# === File system (18) ===
-fs-extra
-glob
-globby
-fast-glob
-chokidar
-rimraf
-mkdirp
-tmp
-temp
-graceful-fs
-proper-lockfile
-lockfile
-archiver
-adm-zip
-tar
-unzipper
-decompress
-copy
-# === Logging/monitoring (14) ===
-winston
-pino
-pino-pretty
-morgan
-bunyan
-debug
-loglevel
-log4js
-consola
-signale
-roarr
-tracer
-winston-daily-rotate-file
-cls-hooked
-# === Codegen/AST (18) ===
-acorn
-acorn-walk
-@babel/parser
-@babel/traverse
-@babel/generator
-@babel/types
-esprima
-escodegen
-recast
-jscodeshift
-typescript
-ts-morph
-astring
-meriyah
-espree
-ast-types
-@vue/compiler-sfc
-svelte-compiler
-# === Shell/process (18) ===
-execa
-shelljs
-cross-spawn
-concurrently
-npm-run-all
-npm-run-all2
-pidtree
-tree-kill
-fkill
-signal-exit
-death
-per-env
-env-cmd
-dotenv-cli
-open
-opn
-start-server-and-test
-wait-on
-# === Plugin systems (14) ===
-postcss
-postcss-preset-env
-autoprefixer
-cssnano
-tailwindcss
-unified
-remark
-remark-parse
-remark-stringify
-rehype
-rehype-parse
-rehype-stringify
-mdast-util-to-string
-unist-util-visit
-# === Validation/schema (15) ===
-zod
-yup
-ajv
-joi
-superstruct
-valibot
-class-validator
-class-transformer
-io-ts
-runtypes
-typebox
-@sinclair/typebox
-json-schema
-jsonschema
-fastest-validator
-# === Templating (10) ===
-ejs
-pug
-handlebars
-nunjucks
-mustache
-liquid
-eta
-art-template
-marko
-twig
-# === State management (10) ===
-redux
-@reduxjs/toolkit
-mobx
-zustand
-jotai
-recoil
-valtio
-xstate
-pinia
-vuex
-# === GraphQL (10) ===
-graphql
-@apollo/server
-@apollo/client
-graphql-tag
-graphql-tools
-type-graphql
-nexus
-pothos
-urql
-mercurius
-# === Image/media (10) ===
-probe-image-size
-jimp
-gm
-imagemin
-pngquant
-svgo
-fluent-ffmpeg
-image-size
-exif-parser
-blurhash
-# === Markdown/text (10) ===
-marked
-markdown-it
-showdown
-turndown
-sanitize-html
-dompurify
-html-minifier-terser
-clean-css
-csso
-js-beautify
-# === Date/time (10) ===
-date-fns
-dayjs
-luxon
-moment
-moment-timezone
-chrono-node
-ms
-pretty-ms
-timeago.js
-date-fns-tz
-# === Math/data (10) ===
-mathjs
-decimal.js
-bignumber.js
-numeral
-d3
-lodash
-underscore
-ramda
-fp-ts
-immutable
-# === UUID/crypto utils (10) ===
-uuid
-nanoid
-cuid
-ulid
-shortid
-hashids
-object-hash
-md5
-sha.js
-create-hash
-# === Config/env (10) ===
-dotenv
-dotenv-expand
-cosmiconfig
-rc
-convict
-conf
-configstore
-env-ci
-nconf
-envalid
-# === Queue/workers (10) ===
-bull
-bullmq
-agenda
-bee-queue
-kue
-amqplib
-rabbitmq-client
-celery-client
-p-queue
-bottleneck
-# === Caching (8) ===
-node-cache
-lru-cache
-keyv
-cacheable-request
-flat-cache
-apicache
-memory-cache
-quick-lru
-# === Email (8) ===
-nodemailer
-@sendgrid/mail
-mailgun.js
-postmark
-aws-sdk
-ses
-email-templates
-mjml
-# === PDF/docs (8) ===
-pdfkit
-pdf-lib
-puppeteer
-jspdf
-exceljs
-xlsx
-csv-parser
-papaparse
-# === Miscellaneous popular (40+) ===
-async
-bluebird
-rxjs
-p-limit
-p-map
-p-retry
-p-timeout
-redaxios
-form-data
-formidable
-busboy
-multer
-cookie-parser
-express-session
-connect-redis
-connect-mongo
-body-parser
-compression
-serve-static
-serve-favicon
-method-override
-errorhandler
-cron
-node-schedule
-cheerio
-puppeteer-core
-jsdom
-xmlbuilder2
-xml2js
-fast-xml-parser
-yaml
-toml
-ini
-properties-reader
-iconv-lite
-chardet
-string-width
-wrap-ansi
-strip-ansi
-ansi-colors

package/datasets/benign/packages-pypi.txt DELETED Viewed

@@ -1,164 +0,0 @@
-# MUAD'DIB Benign Dataset — 100+ popular PyPI packages
-# Used for FPR measurement on Python ecosystem
-# === Web frameworks (15) ===
-requests
-flask
-django
-fastapi
-starlette
-uvicorn
-gunicorn
-tornado
-bottle
-falcon
-sanic
-quart
-aiohttp
-httpx
-werkzeug
-# === Data science (15) ===
-numpy
-pandas
-scipy
-scikit-learn
-matplotlib
-seaborn
-plotly
-bokeh
-altair
-statsmodels
-xgboost
-lightgbm
-catboost
-polars
-vaex
-# === ML/AI (10) ===
-tensorflow
-torch
-keras
-transformers
-datasets
-tokenizers
-onnx
-onnxruntime
-jax
-flax
-# === Database (10) ===
-sqlalchemy
-psycopg2
-pymongo
-redis
-motor
-peewee
-databases
-asyncpg
-aiomysql
-cassandra-driver
-# === Testing (10) ===
-pytest
-pytest-cov
-pytest-asyncio
-pytest-mock
-coverage
-tox
-nox
-hypothesis
-faker
-factory-boy
-# === CLI/UX (10) ===
-click
-typer
-rich
-tqdm
-prompt-toolkit
-colorama
-termcolor
-tabulate
-alive-progress
-questionary
-# === Linting/formatting (8) ===
-black
-pylint
-mypy
-ruff
-isort
-flake8
-autopep8
-bandit
-# === Config/env (8) ===
-python-dotenv
-pydantic
-pydantic-settings
-dynaconf
-toml
-tomli
-configparser
-python-decouple
-# === Logging/monitoring (5) ===
-loguru
-structlog
-sentry-sdk
-watchtower
-python-json-logger
-# === Crypto/security (8) ===
-cryptography
-pyjwt
-passlib
-bcrypt
-paramiko
-certifi
-truststore
-pyopenssl
-# === File/IO (8) ===
-pillow
-opencv-python
-pyyaml
-lxml
-beautifulsoup4
-python-magic
-watchdog
-send2trash
-# === Async/concurrency (5) ===
-celery
-dramatiq
-asyncio
-trio
-anyio
-# === DevOps/CI (5) ===
-boto3
-docker
-fabric
-invoke
-ansible
-# === Networking (5) ===
-scrapy
-selenium
-playwright
-websockets
-grpcio
-# === Misc popular (10) ===
-arrow
-pendulum
-python-dateutil
-jinja2
-mako
-marshmallow
-attrs
-dataclasses-json
-orjson
-ujson