guarddog 2.6.0__py3-none-any.whl → 2.7.1__py3-none-any.whl

guarddog/scanners/pypi_project_scanner.py

@@ -3,7 +3,7 @@ import os
 import re
 from typing import List
 
-import pkg_resources
+from packaging.requirements import Requirement
 import requests
 from packaging.specifiers import Specifier, Version
 
@@ -111,12 +111,11 @@ class PypiRequirementsScanner(ProjectScanner):
             """
             This helper function yields one valid requirement line at a time
             """
-            parsed = pkg_resources.parse_requirements(req)
-            while True:
+            for req_line in req:
+                if not req_line.strip():
+                    continue
                 try:
-                    yield next(parsed)
-                except StopIteration:
-                    break
+                    yield Requirement(req_line)
                 except Exception as e:
                     log.error(
                         f"Error when parsing requirements, received error {str(e)}. This entry will be "
@@ -130,7 +129,7 @@ class PypiRequirementsScanner(ProjectScanner):
                     continue
 
                 versions = get_matched_versions(
-                    find_all_versions(requirement.project_name),
+                    find_all_versions(requirement.name),
                     (
                         requirement.url
                         if requirement.url
@@ -139,9 +138,7 @@ class PypiRequirementsScanner(ProjectScanner):
                 )
 
                 if len(versions) == 0:
-                    log.error(
-                        f"Package/Version {requirement.project_name} not on PyPI\n"
-                    )
+                    log.error(f"Package/Version {requirement.name} not on PyPI\n")
                     continue
 
                 idx = next(
@@ -165,13 +162,13 @@ class PypiRequirementsScanner(ProjectScanner):
                 # find the dep with the same name or create a new one
                 dep = next(
                     filter(
-                        lambda d: d.name == requirement.project_name,
+                        lambda d: d.name == requirement.name,
                         dependencies,
                     ),
                     None,
                 )
                 if not dep:
-                    dep = Dependency(name=requirement.project_name, versions=set())
+                    dep = Dependency(name=requirement.name, versions=set())
                     dependencies.append(dep)
 
                 dep.versions.update(dep_versions)

guarddog/scanners/scanner.py

@@ -59,6 +59,7 @@ class Dependency:
         name (str): The name of the dependency. e.g., "requests"
         versions (Set[DependencyVersion]): A set of identified versions of the dependency.
     """
+
     name: str
     versions: Set[DependencyVersion]
 

guarddog/utils/archives.py

@@ -1,10 +1,17 @@
 import logging
 import os
+import pathlib
 import stat
 import zipfile
 
 import tarsafe  # type:ignore
 
+from guarddog.utils.config import (
+    MAX_UNCOMPRESSED_SIZE,
+    MAX_COMPRESSION_RATIO,
+    MAX_FILE_COUNT,
+)
+
 log = logging.getLogger("guarddog")
 
 
@@ -20,6 +27,7 @@ def is_supported_archive(path: str) -> bool:
         bool: Represents the decision reached for the file
 
     """
+
     def is_tar_archive(path: str) -> bool:
         tar_exts = [".bz2", ".bzip2", ".gz", ".gzip", ".tgz", ".xz"]
 
@@ -31,7 +39,10 @@ def is_supported_archive(path: str) -> bool:
     return is_tar_archive(path) or is_zip_archive(path)
 
 
-def safe_extract(source_archive: str, target_directory: str) -> None:
+def safe_extract(
+    source_archive: str,
+    target_directory: str,
+) -> None:
     """
     safe_extract safely extracts archives to a target directory.
 
@@ -42,15 +53,99 @@ def safe_extract(source_archive: str, target_directory: str) -> None:
 
     @param source_archive:      The archive to extract
     @param target_directory:    The directory where to extract the archive to
-    @raise ValueError           If the archive type is unsupported
+    @raise ValueError           If the archive type is unsupported or exceeds safety limits
 
     """
+
+    def _check_compression_bomb(
+        file_count: int,
+        total_size: int,
+        archive_size: int,
+    ) -> None:
+        """
+        Checks for compression bombs and file descriptor exhaustion attacks.
+
+        @param file_count: Number of files in the archive
+        @param total_size: Total uncompressed size in bytes
+        @param archive_size: Compressed archive size in bytes
+        @raise ValueError: If any safety limit is exceeded
+        """
+        if file_count > MAX_FILE_COUNT:
+            raise ValueError(
+                f"Archive contains {file_count} files, exceeding maximum allowed "
+                f"count ({MAX_FILE_COUNT}). Possible file descriptor exhaustion attack."
+            )
+
+        if total_size > MAX_UNCOMPRESSED_SIZE:
+            raise ValueError(
+                f"Archive uncompressed size ({total_size} bytes) exceeds maximum allowed "
+                f"size ({MAX_UNCOMPRESSED_SIZE} bytes). Possible compression bomb."
+            )
+
+        if archive_size > 0:
+            compression_ratio = total_size / archive_size
+            if compression_ratio > MAX_COMPRESSION_RATIO:
+                raise ValueError(
+                    f"Archive compression ratio ({compression_ratio:.1f}:1) exceeds maximum "
+                    f"allowed ratio ({MAX_COMPRESSION_RATIO}:1). Possible compression bomb."
+                )
+
+    def _is_unsafe_symlink(
+        zip_info: zipfile.ZipInfo, zip_file: zipfile.ZipFile
+    ) -> bool:
+        """
+        Check if a zip entry is a symlink pointing outside the target directory.
+
+        Follows the same logic as tarsafe: reads the symlink target and checks if
+        the resolved path would be outside the extraction directory.
+
+        @param zip_info: The ZipInfo object to check
+        @param zip_file: The ZipFile object to read the symlink target
+        @return: True if the symlink is unsafe, False otherwise
+        """
+        # Check if this is a symlink
+        # external_attr stores Unix file mode in upper 16 bits
+        attr = zip_info.external_attr >> 16
+        # Mask with 0o170000 to get just the file type bits
+        # 0o120000 = symbolic link
+        if (attr & 0o170000) != 0o120000:
+            return False
+
+        linkname = zip_file.read(zip_info).decode("utf-8")
+
+        symlink_file = pathlib.Path(
+            os.path.normpath(os.path.join(target_directory, linkname))
+        )
+        if not os.path.abspath(os.path.join(target_directory, symlink_file)).startswith(
+            target_directory
+        ):
+            return True
+
+        return False
+
+    def _is_device(zip_info: zipfile.ZipInfo) -> bool:
+        """
+        Check if a zip entry is a device file (character or block device).
+
+        @param zip_info: The ZipInfo object to check
+        @return: True if this is a device file, False otherwise
+        """
+        # external_attr stores Unix file mode in upper 16 bits
+        # Mask with 0o170000 to get just the file type bits
+        attr = zip_info.external_attr >> 16
+        file_type = attr & 0o170000
+        # Check for character device (0o020000) or block device (0o060000)
+        return file_type == 0o020000 or file_type == 0o060000
+
     log.debug(f"Extracting archive {source_archive} to directory {target_directory}")
+
+    archive_size = os.path.getsize(source_archive)
+
     if tarsafe.is_tarfile(source_archive):
 
         def add_exec(path):
             st = os.stat(path)
-            os.chmod(path, st.st_mode | stat.S_IEXEC)
+            os.chmod(path, st.st_mode | stat.S_IXUSR)
 
         def add_read(path):
             st = os.stat(path)
@@ -64,15 +159,45 @@ def safe_extract(source_archive: str, target_directory: str) -> None:
                 for f in files:
                     add_read(os.path.join(root, f))
 
+        # Check uncompressed size for tar archives by inspecting members
+        with tarsafe.open(source_archive) as tar:
+            members = [member for member in tar.getmembers() if member.isfile()]
+            file_count = len(members)
+            total_size = sum(member.size for member in members)
+
+            _check_compression_bomb(file_count, total_size, archive_size)
+
         tarsafe.open(source_archive).extractall(target_directory)
         recurse_add_perms(target_directory)
 
     elif zipfile.is_zipfile(source_archive):
-        with zipfile.ZipFile(source_archive, 'r') as zip:
-            for file in zip.namelist():
-                # Note: zip.extract cleans up any malicious file name
-                # such as directory traversal attempts This is not the
-                # case of zipfile.extractall
-                zip.extract(file, path=os.path.join(target_directory, file))
+        with zipfile.ZipFile(source_archive, "r") as zip_file:
+            # Check uncompressed size for zip archives
+            files = [info for info in zip_file.infolist() if not info.is_dir()]
+            file_count = len(files)
+            total_size = sum(info.file_size for info in files)
+
+            _check_compression_bomb(file_count, total_size, archive_size)
+
+            # Validate and extract each file safely
+            for member in zip_file.infolist():
+                # Check for unsafe symlinks (zip don't supports hardlinks)
+                if _is_unsafe_symlink(member, zip_file):
+                    # we avoid unsafe files extraction but scan the rest of the package
+                    log.warning(
+                        f"Archived file {member.filename} is an unsafe symlink. Skipping extraction"
+                    )
+                    continue
+
+                # Check for device files
+                if _is_device(member):
+                    # we avoid unsafe files extraction but scan the rest of the package
+                    log.warning(
+                        f"Archived file {member.filename} is a device file type. Skipping extraction"
+                    )
+                    continue
+
+                # Extract file safely using zip.extract which handles path sanitization
+                zip_file.extract(member, path=target_directory)
     else:
         raise ValueError(f"unsupported archive extension: {source_archive}")

guarddog/utils/config.py

@@ -32,10 +32,32 @@ TOP_PACKAGES_CACHE_LOCATION: str = os.environ.get(
 """
 This parameter specifies comman separated file extentions that YARA rules will not run against
 - Default: ini,md,rst,txt,lock,json,yaml,yml,toml,xml,html,rst,csv,sql,pdf,doc,docx,ppt,
-           pptx,xls,xlsx,odt,changelog,readme,makefile,dockerfile,pkg-info
+           pptx,xls,xlsx,odt,changelog,readme,makefile,dockerfile,pkg-info,d.ts
 """
 YARA_EXT_EXCLUDE: list[str] = os.environ.get(
     "GUARDDOG_YARA_EXT_EXCLUDE",
     "ini,md,rst,txt,lock,json,yaml,yml,toml,xml,html,rst,csv,sql,pdf,doc,docx,ppt,"
-    "pptx,xls,xlsx,odt,changelog,readme,makefile,dockerfile,pkg-info",
+    "pptx,xls,xlsx,odt,changelog,readme,makefile,dockerfile,pkg-info,d.ts",
 ).split(",")
+
+"""
+This parameter specifies the maximum uncompressed size allowed for archive extraction
+- Default: 2 GB in bytes
+"""
+MAX_UNCOMPRESSED_SIZE: int = int(
+    os.environ.get("GUARDDOG_MAX_UNCOMPRESSED_SIZE", 2 * 1024 * 1024 * 1024)
+)
+
+"""
+This parameter specifies the maximum compression ratio allowed for archive extraction
+- Default: 100 (100:1 ratio)
+"""
+MAX_COMPRESSION_RATIO: float = float(
+    os.environ.get("GUARDDOG_MAX_COMPRESSION_RATIO", 100)
+)
+
+"""
+This parameter specifies the maximum number of files allowed in an archive
+- Default: 100000
+"""
+MAX_FILE_COUNT: int = int(os.environ.get("GUARDDOG_MAX_FILE_COUNT", 100000))

guarddog/utils/package_info.py

@@ -25,7 +25,9 @@ def get_package_info(name: str) -> dict:
 
     # Check if package file exists
     if response.status_code != 200:
-        raise Exception("Received status code: " + str(response.status_code) + " from PyPI")
+        raise Exception(
+            "Received status code: " + str(response.status_code) + " from PyPI"
+        )
 
     data = response.json()
 

{guarddog-2.6.0.dist-info → guarddog-2.7.1.dist-info}/METADATA

@@ -1,8 +1,11 @@
-Metadata-Version: 2.3
+Metadata-Version: 2.4
 Name: guarddog
-Version: 2.6.0
-Summary: GuardDog is a CLI tool to Identify malicious PyPI packages
+Version: 2.7.1
+Summary: GuardDog is a CLI tool for identifying malicious open source packages
 License: Apache-2.0
+License-File: LICENSE
+License-File: LICENSE-3rdparty.csv
+License-File: NOTICE
 Author: Ellen Wang
 Requires-Python: >=3.10,<4
 Classifier: License :: OSI Approved :: Apache Software License
@@ -11,23 +14,21 @@ Classifier: Programming Language :: Python :: 3.10
 Classifier: Programming Language :: Python :: 3.11
 Classifier: Programming Language :: Python :: 3.12
 Classifier: Programming Language :: Python :: 3.13
+Classifier: Programming Language :: Python :: 3.14
 Requires-Dist: click (>=8.1.3,<9.0.0)
-Requires-Dist: click-option-group (>=0.5.5,<0.6.0)
-Requires-Dist: colorama (>=0.4.6,<0.5.0)
 Requires-Dist: configparser (>=5.3,<8.0)
 Requires-Dist: disposable-email-domains (>=0.0.103,<0.0.121)
 Requires-Dist: prettytable (>=3.6.0,<4.0.0)
-Requires-Dist: pygit2 (>=1.11,<1.18)
+Requires-Dist: pygit2 (>=1.11,<1.19)
 Requires-Dist: python-dateutil (>=2.8.2,<3.0.0)
 Requires-Dist: python-whois (>=0.8,<0.10)
 Requires-Dist: pyyaml (>=6.0,<7.0)
 Requires-Dist: requests (>=2.29.0,<3.0.0)
 Requires-Dist: semantic-version (>=2.10.0,<3.0.0)
-Requires-Dist: semgrep (>=1.102.0,<2.0.0)
-Requires-Dist: setuptools (>=70.3,<77.0)
+Requires-Dist: semgrep (>=1.147.0,<2.0.0)
 Requires-Dist: tarsafe (>=0.0.5,<0.0.6)
 Requires-Dist: termcolor (>=2.1.0,<3.0.0)
-Requires-Dist: urllib3 (==2.3.0)
+Requires-Dist: urllib3 (>=2.5.0,<3.0.0)
 Requires-Dist: yara-python (>=4.5.1,<5.0.0)
 Project-URL: Repository, https://github.com/DataDog/guarddog
 Description-Content-Type: text/x-rst

guarddog-2.7.1.dist-info/RECORD

@@ -0,0 +1,100 @@
+guarddog/__init__.py,sha256=reb53KZG9b1nFmsDxj2fropaOceOCyM9bVMUdmZ2wS8,227
+guarddog/__main__.py,sha256=GEdfW6I6g2c3H7bS0G43E4C-g7kXGUswzDCPFSwPgHY,246
+guarddog/analyzer/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+guarddog/analyzer/analyzer.py,sha256=eeWbazqGWFJBeT_OHHmEndH3hG_6PMxUajof6T9jutM,15413
+guarddog/analyzer/metadata/__init__.py,sha256=tQTwWanifLsxfCdXIytPCO3chEIiTZ583uqKiQXQOog,855
+guarddog/analyzer/metadata/bundled_binary.py,sha256=Tfgbc-exhbfvYjpgFH_Aa5KtT4ugJhrTV9SavZw1pHs,2594
+guarddog/analyzer/metadata/deceptive_author.py,sha256=CLwntpSNBO4Bji3IEw2lctvNCMLiOxz0pG7KSEzIynM,2811
+guarddog/analyzer/metadata/detector.py,sha256=dFhmoPVtxoed-Lz3Bd8GXZhorOVajvo5sIl9Iw8oCOM,641
+guarddog/analyzer/metadata/empty_information.py,sha256=qswYDOrL3MxJ4VYq893Eiev5y56fgXrk5-CTKVXbkeA,1199
+guarddog/analyzer/metadata/github_action/__init__.py,sha256=hOtiXKW-v5slzYW2M3k35M_YFfuLm8CNv5MwNSdFYMM,311
+guarddog/analyzer/metadata/go/__init__.py,sha256=apwPnP9D4WEqgtR4RY0YIuFN7oNJXxJE_vYlp0ffRvQ,391
+guarddog/analyzer/metadata/go/typosquatting.py,sha256=ZouptuX7a015XGjvYP6TFYgsOfYOxEm9jxYHKoCqwA4,4208
+guarddog/analyzer/metadata/npm/__init__.py,sha256=j1Ng74bb1yD9XHFoYmJPzWL7vYMmLt6c2Lbc8lCqnUI,1326
+guarddog/analyzer/metadata/npm/bundled_binary.py,sha256=vxJLhaTS7wymbktvmfJsF3whz3DWisjdD4wqHlNXvhg,392
+guarddog/analyzer/metadata/npm/deceptive_author.py,sha256=RIBCWK3NjZiTf7tiz2V0ECy2Zr6Uwb69RQwIcWku380,366
+guarddog/analyzer/metadata/npm/direct_url_dependency.py,sha256=hjjTLIT0UVudSf9A9Hory2OAqUkdxoXfKGXDgMtnNso,2449
+guarddog/analyzer/metadata/npm/empty_information.py,sha256=Vpjr5Xe8JB4RIPzM0-BNmiqYiuY42LUbml7Yjig7Rcs,791
+guarddog/analyzer/metadata/npm/npm_metadata_mismatch.py,sha256=Fj9MT7XlO2iXis4Da-_0CmM0weQiv8bVzKUoSm8ntYU,4428
+guarddog/analyzer/metadata/npm/potentially_compromised_email_domain.py,sha256=Sm7fBfzayrbYXOpU5XzeCGKNfcX40hMOCSjKjhKwz-g,1719
+guarddog/analyzer/metadata/npm/release_zero.py,sha256=FNHYfxl52i0V3HydccspcfF82T5L9d3ZyE-_J-UVoS0,633
+guarddog/analyzer/metadata/npm/typosquatting.py,sha256=0vazzHPJOhjoxlv1O3-qVH-yQKLKefkXlK90D4JoPCQ,4143
+guarddog/analyzer/metadata/npm/unclaimed_maintainer_email_domain.py,sha256=B8olfxXiaSM8c47dyftIgxmMVuwg4s7dMuVxrMS0GNE,953
+guarddog/analyzer/metadata/npm/utils.py,sha256=QirjkoXhDcrGfoteh-V717TGq1xpXmvuC9dEp_5bt2s,454
+guarddog/analyzer/metadata/potentially_compromised_email_domain.py,sha256=p2KCIByv4dBNM8h_1xPJgAOL197LLDvSLalZQpsvadg,2960
+guarddog/analyzer/metadata/pypi/__init__.py,sha256=ef2tKnVzJPVy2eLgvBDII77t-zKOCPBOC6dmTCl_XBc,1381
+guarddog/analyzer/metadata/pypi/bundled_binary.py,sha256=J5FqMYPTYnmb2MX9BFextVM5P0IzR522fhWV8TuTYMg,393
+guarddog/analyzer/metadata/pypi/deceptive_author.py,sha256=KRbi7xfGYnEiq0p5HFazjV00a-3tIGe2ogXRvPhz9tI,367
+guarddog/analyzer/metadata/pypi/empty_information.py,sha256=Ppaa_aEIlFJ5VpRtcm2ozlBoRHrTs6CWpPyh82sTM7g,814
+guarddog/analyzer/metadata/pypi/potentially_compromised_email_domain.py,sha256=8zncGNsyfhWe04HRDF54rfP8y--_6l9ze-F-gH97pWo,1774
+guarddog/analyzer/metadata/pypi/release_zero.py,sha256=UNUAFeB34B88N0LRe-tnmoZ3Y4x4AVZbe7m0i9Q3W7U,789
+guarddog/analyzer/metadata/pypi/repository_integrity_mismatch.py,sha256=RB-Wf5Cbuh8KswkcCCHk7BVWvmOJccdHyb4mBjxiLhk,11903
+guarddog/analyzer/metadata/pypi/single_python_file.py,sha256=L-YlmlP1TYA9XBeTHBPfECWgVIPTenUWRRnqwCMyh-o,1402
+guarddog/analyzer/metadata/pypi/typosquatting.py,sha256=Bzx_vjIiuugeRdyR-ABg7S-6J7Udm7stM8CUU8WUafg,6042
+guarddog/analyzer/metadata/pypi/unclaimed_maintainer_email_domain.py,sha256=zfT0qTyN83O-7Yevc6tYIjmCAgh8Y_dhE6oZlKdNmm0,421
+guarddog/analyzer/metadata/pypi/utils.py,sha256=UtG2JVep8bSOMz5LkrhXqS5Oy7Na19nHVct4IQMsQik,177
+guarddog/analyzer/metadata/release_zero.py,sha256=F0I8coYivya7zns0XI1xNY4LLtTDQXoBUmze1wjwW4g,439
+guarddog/analyzer/metadata/repository_integrity_mismatch.py,sha256=WGvck9JV2iCB8xaOc6X5cEGiu59juSWFfwbf6uEah3E,792
+guarddog/analyzer/metadata/resources/placeholder_email_domains.txt,sha256=o3mm9u6vuaVeN4wRgDTidR5oL6ufLTCrE9ISVYbOGUc,11
+guarddog/analyzer/metadata/resources/top_go_packages.json,sha256=HHOTcuWTGqlpXDOUgF7ejgmr8sGF_T5l7NQYdXmHcKQ,104044
+guarddog/analyzer/metadata/resources/top_npm_packages.json,sha256=eeqVkFNW8ltYcGbjAJBzZrdxBEKezxa6AVVYoEpFazs,192960
+guarddog/analyzer/metadata/resources/top_pypi_packages.json,sha256=hDQZUuG6BS4h7yNTAQ191l8_N6jaqezO9n2vdsZPKhA,1474298
+guarddog/analyzer/metadata/typosquatting.py,sha256=6xmqsB0oKwrsXfTJ9DE1z8-nUW8ukgk1ZSS32iJmapk,4587
+guarddog/analyzer/metadata/unclaimed_maintainer_email_domain.py,sha256=e-K9mSdph3y33fP_W7LNOlC7AnUVk28a1VfQJtG9vxo,2375
+guarddog/analyzer/metadata/utils.py,sha256=li7AGB8c_G4ytX0MvvyzVTFNPneK78uMp1h-pT__2qE,1772
+guarddog/analyzer/sourcecode/__init__.py,sha256=031VVi-DqTHxeYiI2mf2AuI76GaNUUyra_t0pRVqo5k,4631
+guarddog/analyzer/sourcecode/api-obfuscation.yml,sha256=y_m6PSh8CfF6nxMulj2Yx4XYxS1T5OO0Eos9WJiDR74,2137
+guarddog/analyzer/sourcecode/clipboard-access.yml,sha256=B36E7xKtAVgwZ29UWtvZa1AJcyfrhvehbLo6tlJqffk,524
+guarddog/analyzer/sourcecode/cmd-overwrite.yml,sha256=l-tE3_G-LqCuCZnHab6v0PpCdMpoHPutBYcijeMZEA0,682
+guarddog/analyzer/sourcecode/code-execution.yml,sha256=YyWBMhcXGzrM6JbXzRTBBFCs7bnoNGPFJJ_FIV2OYtc,5028
+guarddog/analyzer/sourcecode/dll-hijacking.yml,sha256=_lkYp0P4545aiGazC5lRBeCcMHhGWzaK-95zu5MfRLY,3721
+guarddog/analyzer/sourcecode/download-executable.yml,sha256=VuSNkpVh3DxHG7wfep3eAErGsOY9EL_268sNULYbfW4,3361
+guarddog/analyzer/sourcecode/exec-base64.yml,sha256=Wg1jI_ff9I58Xq8gt8wXOQMrwHcPnzkAPyAURxnKHgw,2371
+guarddog/analyzer/sourcecode/exfiltrate-sensitive-data.yml,sha256=hUxQEsJ4qF_25oMF8pdzAFOzq59m6k28WKz280uyaMg,2264
+guarddog/analyzer/sourcecode/go-exec-base64.yml,sha256=Y5TUfLrmU1e5FTYW2zRKwn8yluBARHSXPr6Mr5vMVOY,1554
+guarddog/analyzer/sourcecode/go-exec-download.yml,sha256=ZaZOvn3Xojsd2m8MQGLW1H7p28bPdpEbmDd37q2ZiX4,2931
+guarddog/analyzer/sourcecode/go-exfiltrate-sensitive-data.yml,sha256=sb5GI-523zgE1nxNCrnRVjBSeOp7IfPy7qTQPBJMkco,3697
+guarddog/analyzer/sourcecode/npm-dll-hijacking.yml,sha256=1TvI6UtCGCOMy4Ii-kM_oICYbMRGeOYdgXrG7-zmJ_Y,3460
+guarddog/analyzer/sourcecode/npm-exec-base64.yml,sha256=zc5w2FTlHoZ7ot1flzlmYBkQu1I8eG1E63S5Aki7Goc,814
+guarddog/analyzer/sourcecode/npm-exfiltrate-sensitive-data.yml,sha256=UYWXdkAab-dg_6UwVjiauHmy-9nlKiF86qcyxAwUoXg,3488
+guarddog/analyzer/sourcecode/npm-install-script.yml,sha256=6BLe_V0SGEi1C79Y-FEIcMYHl4vLOOz8bLPrCU5jre8,1329
+guarddog/analyzer/sourcecode/npm-obfuscation.yml,sha256=UxR5ezKr9sFcXEh2JKa20IYqq25J0JDfje82O3jUYMg,2174
+guarddog/analyzer/sourcecode/npm-serialize-environment.yml,sha256=gFpr58INp44ZwxYZlIHyzpOgbVMDLv1ZRPTGAczX5dw,835
+guarddog/analyzer/sourcecode/npm-silent-process-execution.yml,sha256=qnJHGesNPNpxGa8n2kQMpttLGck-6vZjI_SsweDyk7M,3513
+guarddog/analyzer/sourcecode/npm-steganography.yml,sha256=XH0udcriAQq_6WOHAG4TpIedw8GgKyWx9gsG_Q_Fki8,915
+guarddog/analyzer/sourcecode/obfuscation.yml,sha256=dp0BeCYShcTS8QiijSa9U53r6jkCjrFBW5jjNVoXdUU,1224
+guarddog/analyzer/sourcecode/shady-links.yml,sha256=H-QdBfK30PK9JRWJXk2SlFFiSSkMkuKZF0mWoCjwQ5w,3222
+guarddog/analyzer/sourcecode/silent-process-execution.yml,sha256=b6RjenMv7si7lXGak3uMmD7PMtQRuKPeJFggPW6UDNI,418
+guarddog/analyzer/sourcecode/steganography.yml,sha256=3ceO6SJhu4XpZEjfwelLdOxeZ4Ho1OgUjbcacwtOhR0,606
+guarddog/analyzer/sourcecode/suspicious_passwd_access_linux.yar,sha256=kplidsJ-ctg6W58VlYtLq10saZbcD1pm5_Xh4sqmHwk,422
+guarddog/analyzer/sourcecode/unicode.yml,sha256=7fAygEtYwJ1iNKsyCjmLAEu15CLMWApfWXx_t_W3sOA,5596
+guarddog/cli.py,sha256=Pk4WUD5a_TlPRpq2G4v_6FDGWu8IriXQPQ_ft8RXm5o,10692
+guarddog/ecosystems.py,sha256=I1XPAhPuv7OnfZT3z0xcgEecUY1tFJdrklV07sMYffg,582
+guarddog/reporters/__init__.py,sha256=lHNa5ZDsaIpjzS7SmheD5_GGAimGitXU-DNk-Wn97bI,749
+guarddog/reporters/human_readable.py,sha256=WEyjOPdBE8adxC-tdFgwxcyDijsppLk4gIiZOUO69O0,4548
+guarddog/reporters/json.py,sha256=gpbucxGoXBA6s7fNRzhQwZ4P6gWyz7BowsmQrnm4x6U,802
+guarddog/reporters/reporter_factory.py,sha256=JUagC2UFkN2TZGpZIkI1MwMHEbwT9Ja1goQP95-k9SM,1465
+guarddog/reporters/sarif.py,sha256=diOHJcN3CkSBxBDDg6l9DiZ3ebtUNCw0Rwd7QxCpM9k,7691
+guarddog/scanners/__init__.py,sha256=dyBzyKANxTQvyd-oTjgm43gPwRMqB80eOzZ6UFNOuO8,2157
+guarddog/scanners/extension_scanner.py,sha256=YdZ7Ai4U-MC83RJcnoo63m_aylAf3VnylwgvhGK3ktU,4915
+guarddog/scanners/github_action_project_scanner.py,sha256=ISoBqUurwN0lMBtXwcNoalo3ghlbOJkZs9vSNZOT0kk,4216
+guarddog/scanners/github_action_scanner.py,sha256=6lriTel3U7vNmCWBf0SWti9sLCv88RPlP8SVoAgpKJs,1781
+guarddog/scanners/go_package_scanner.py,sha256=OdCbwtjJow9AxEv34z7WBfgTamqKj5DxJh7dly_1NuY,2926
+guarddog/scanners/go_project_scanner.py,sha256=2suZJWvYBhiiBMIQXs38SR04E_Ast50jO44X27gEG10,3349
+guarddog/scanners/npm_package_scanner.py,sha256=ciOvpRViMIQvNFupe5-hdXv65QLU5ObmacRkR2pgp18,2056
+guarddog/scanners/npm_project_scanner.py,sha256=liz5Fyscab53IiSPg0T21Z0vT5eotcHPc_W5Xam4A88,4957
+guarddog/scanners/pypi_package_scanner.py,sha256=ZkuRRbNejnpfFpIHJJ42GH34khiG8CUKWEPvVh_M_uk,2449
+guarddog/scanners/pypi_project_scanner.py,sha256=O91c1UP2iZju84_N7cSE7pWGrY6rKapeUqXEVyKld3A,6435
+guarddog/scanners/scanner.py,sha256=F7FhN-BQWtcTvh_gdhvj-rXYLMslzeTNxPbJsw1he2s,13695
+guarddog/utils/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+guarddog/utils/archives.py,sha256=s1AXn6r8kD8hy5JxEOTzdHTgDpgSTImj_mFHfAI34IM,7417
+guarddog/utils/config.py,sha256=LfXghBsSeB_UH333C3zvh46UpG0doOW6MaZ7GG7_0Z8,2047
+guarddog/utils/exceptions.py,sha256=23Kzl3exqYK6X-bcGUeb8wPmSglWNX3GIDPkJ6lQzo4,54
+guarddog/utils/package_info.py,sha256=6fHJPeLn6-tHhKHw0Soedfv2ruPd8zhW2kbhlc3Aem0,975
+guarddog-2.7.1.dist-info/METADATA,sha256=rxvp3useQx0sBa_HFyCeg9cBFhnjimNEplUvC2yJics,1446
+guarddog-2.7.1.dist-info/WHEEL,sha256=zp0Cn7JsFoX2ATtOhtaFYIiE2rmFAD4OcMhtUki8W3U,88
+guarddog-2.7.1.dist-info/entry_points.txt,sha256=vX2fvhnNdkbEL4pDzrH2NqjWVxeOaEYi0sJYmNgS2-s,45
+guarddog-2.7.1.dist-info/licenses/LICENSE,sha256=w1aNZxHyoyOPJ4fSdiyrr06tCJZbTjCsH9K1uqeDVyU,11377
+guarddog-2.7.1.dist-info/licenses/LICENSE-3rdparty.csv,sha256=cS61ONZL_xlXaTMvQXyBEi3J3es-40Gg6G-6idoa5Qk,314
+guarddog-2.7.1.dist-info/licenses/NOTICE,sha256=nlyNt2IjG8IBoQkb7n6jszwAvmREpKAx0POzFO1s2JM,140
+guarddog-2.7.1.dist-info/RECORD,,

{guarddog-2.6.0.dist-info → guarddog-2.7.1.dist-info}/WHEEL

@@ -1,4 +1,4 @@
 Wheel-Version: 1.0
-Generator: poetry-core 2.1.3
+Generator: poetry-core 2.2.1
 Root-Is-Purelib: true
 Tag: py3-none-any

guarddog-2.6.0.dist-info/RECORD

@@ -1,96 +0,0 @@
-guarddog/__init__.py,sha256=reb53KZG9b1nFmsDxj2fropaOceOCyM9bVMUdmZ2wS8,227
-guarddog/__main__.py,sha256=GEdfW6I6g2c3H7bS0G43E4C-g7kXGUswzDCPFSwPgHY,246
-guarddog/analyzer/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-guarddog/analyzer/analyzer.py,sha256=9R6AlRulH87YuF-4Ed2Z6GZUYqxgb8QivXJy7hewM7E,15009
-guarddog/analyzer/metadata/__init__.py,sha256=xaN-DlSHgudKDjKkfpNFue8ANmq1QUmEoAvU_Bc2OUo,749
-guarddog/analyzer/metadata/bundled_binary.py,sha256=8i5ZPnyPyaLv6MG3KNMDVAElv5bDCOlnlsDt9SGUFsg,2596
-guarddog/analyzer/metadata/deceptive_author.py,sha256=nuFyQqKpOuBKAJxpgbcjwXt3FVLzdmOg2mioUZ1D2TI,2789
-guarddog/analyzer/metadata/detector.py,sha256=6yGyOK6BW_J-yrInoRlbaKNTC0HudezZABzkn2MnDJc,609
-guarddog/analyzer/metadata/empty_information.py,sha256=etCU6LUdIzE4dS90vin45cjtVGPt963nFPJ_OzikwI4,1166
-guarddog/analyzer/metadata/github_action/__init__.py,sha256=hOtiXKW-v5slzYW2M3k35M_YFfuLm8CNv5MwNSdFYMM,311
-guarddog/analyzer/metadata/go/__init__.py,sha256=apwPnP9D4WEqgtR4RY0YIuFN7oNJXxJE_vYlp0ffRvQ,391
-guarddog/analyzer/metadata/go/typosquatting.py,sha256=8Ln-DoGWto6tnihUPNaQ6qITp7z0tmFVf1BMC6hdMUo,4004
-guarddog/analyzer/metadata/npm/__init__.py,sha256=j1Ng74bb1yD9XHFoYmJPzWL7vYMmLt6c2Lbc8lCqnUI,1326
-guarddog/analyzer/metadata/npm/bundled_binary.py,sha256=i02ynI2VoK0O9I4w8k1cgOORqpn16XsUy5WlWgQgcSs,360
-guarddog/analyzer/metadata/npm/deceptive_author.py,sha256=CZLdVqjumQr2z0OWg6cZvqDpacHf8cuM3Q6ZMBGMHk4,367
-guarddog/analyzer/metadata/npm/direct_url_dependency.py,sha256=b_IdauLTm6LioZVIb82q4EVu777shEaYAplGlzPwHgU,2449
-guarddog/analyzer/metadata/npm/empty_information.py,sha256=dPWHQP1R_8MFiQyzo2OGu3keKL_6MqMZFE7OLErQPzI,793
-guarddog/analyzer/metadata/npm/npm_metadata_mismatch.py,sha256=Fj9MT7XlO2iXis4Da-_0CmM0weQiv8bVzKUoSm8ntYU,4428
-guarddog/analyzer/metadata/npm/potentially_compromised_email_domain.py,sha256=MKuF4xUpjL8D_rsCX1lOLoBYJB3PVahVlrdd7-P-cpU,1717
-guarddog/analyzer/metadata/npm/release_zero.py,sha256=YH2dn1ePjpYQ7U2utU0JdV9JipbmWaGoPQcW8EhKXP4,578
-guarddog/analyzer/metadata/npm/typosquatting.py,sha256=CubGaYnh3yewrqh6Hsnvx4xWwHUW_hLcAkR3tlv8d0Y,3147
-guarddog/analyzer/metadata/npm/unclaimed_maintainer_email_domain.py,sha256=tbSJQvFXDUjxEcBDOesXTkUqdHFI9hz-16f2y2DKj8A,950
-guarddog/analyzer/metadata/npm/utils.py,sha256=pYAPbJG2X7VbE_HparNg9eHqINtXPnD-_2k8ortrhUE,461
-guarddog/analyzer/metadata/potentially_compromised_email_domain.py,sha256=nqIL2SjP_odV1n_xascVoosxN_FsbzXF0t4xuWEBUVU,2876
-guarddog/analyzer/metadata/pypi/__init__.py,sha256=UVsr2N-98J7Nf1Jn5wH2MiaU7cLaoaaEy_NUz9mZD20,1357
-guarddog/analyzer/metadata/pypi/bundled_binary.py,sha256=aMXVnMbkNDqxsc08Nnuupv2DiZf57QfYE_A6uIpbEKk,361
-guarddog/analyzer/metadata/pypi/deceptive_author.py,sha256=AyGA8aQRGrI-oZbzhJeYVIFZcW72rKmuLz5ltz3buWI,368
-guarddog/analyzer/metadata/pypi/empty_information.py,sha256=spNSBZFcfrWTmmYLQgVS56_YTP8sjeFLTC_s8FTsYBM,723
-guarddog/analyzer/metadata/pypi/potentially_compromised_email_domain.py,sha256=3viTx5mzYocDl5CirXcrCqb2pQPIl4at9QPPjFcJFgM,1772
-guarddog/analyzer/metadata/pypi/release_zero.py,sha256=GSHap4VSVF9_s3gD95kUD_5eZDHxrqQQoV5aFTgzrCw,716
-guarddog/analyzer/metadata/pypi/repository_integrity_mismatch.py,sha256=HNVEOj3cz43qHD47Chul05vpX_9uhfaPgjo6Q-fuCfA,11635
-guarddog/analyzer/metadata/pypi/single_python_file.py,sha256=CLAWaOJ_JNofGmtuCOT-37saryHeZzZAjfJQp31H6jU,1369
-guarddog/analyzer/metadata/pypi/typosquatting.py,sha256=Lk0MoIfsMw557PrpUxLAynqNhWSjZDSVI7GJPdyvoG8,4718
-guarddog/analyzer/metadata/pypi/unclaimed_maintainer_email_domain.py,sha256=4u3s4Jq51arMznv-_0NwZst40x7jGtLJQIEd3Pp2U30,406
-guarddog/analyzer/metadata/pypi/utils.py,sha256=7ipsnFN1KHcFwU9u1GK8wqINKDCXJ1vQEpTwwZfJFp4,199
-guarddog/analyzer/metadata/release_zero.py,sha256=7cIdReF3TU3XJq6ALemK81tqaG3Cz1HNwwtH65Y9uPU,438
-guarddog/analyzer/metadata/repository_integrity_mismatch.py,sha256=riAvZYSV64sYNBsQv_nZtCoHcUAHYDkWELlxPQs3f2E,743
-guarddog/analyzer/metadata/resources/placeholder_email_domains.txt,sha256=o3mm9u6vuaVeN4wRgDTidR5oL6ufLTCrE9ISVYbOGUc,11
-guarddog/analyzer/metadata/resources/top_go_packages.json,sha256=HHOTcuWTGqlpXDOUgF7ejgmr8sGF_T5l7NQYdXmHcKQ,104044
-guarddog/analyzer/metadata/resources/top_npm_packages.json,sha256=eeqVkFNW8ltYcGbjAJBzZrdxBEKezxa6AVVYoEpFazs,192960
-guarddog/analyzer/metadata/resources/top_pypi_packages.json,sha256=7tN8yUTqbpq3HvNePK9IKrTIEeYblTMHXhUzyOdVN-w,1479906
-guarddog/analyzer/metadata/typosquatting.py,sha256=EMtHwKWWEYUs7ikyaPNtXH0FGPNDPDc2IFMZSDiv3Mg,4560
-guarddog/analyzer/metadata/unclaimed_maintainer_email_domain.py,sha256=qy8AZqbVxD1U3Q--h0FYV7lKPFNlhSzfZK0GwjvQxdQ,2343
-guarddog/analyzer/metadata/utils.py,sha256=bOrkELPza4ScUx1DfQxlqU-9DQeA5weISF42c0QCtls,1768
-guarddog/analyzer/sourcecode/__init__.py,sha256=6TsFMVYmL3nuAJjBplbAInQp7coldAxz1qdrZvZGcBc,3960
-guarddog/analyzer/sourcecode/clipboard-access.yml,sha256=B36E7xKtAVgwZ29UWtvZa1AJcyfrhvehbLo6tlJqffk,524
-guarddog/analyzer/sourcecode/cmd-overwrite.yml,sha256=l-tE3_G-LqCuCZnHab6v0PpCdMpoHPutBYcijeMZEA0,682
-guarddog/analyzer/sourcecode/code-execution.yml,sha256=gbnbvpnmSCY3Q5BANziWCRA-JXIH2LQ8-5ZaFralqbM,5002
-guarddog/analyzer/sourcecode/dll-hijacking.yml,sha256=SH1lJ_-EoPfZKrsut9smnEmKPOiXc1c5qzqEBo6ubgQ,3497
-guarddog/analyzer/sourcecode/download-executable.yml,sha256=VuSNkpVh3DxHG7wfep3eAErGsOY9EL_268sNULYbfW4,3361
-guarddog/analyzer/sourcecode/exec-base64.yml,sha256=Wg1jI_ff9I58Xq8gt8wXOQMrwHcPnzkAPyAURxnKHgw,2371
-guarddog/analyzer/sourcecode/exfiltrate-sensitive-data.yml,sha256=hUxQEsJ4qF_25oMF8pdzAFOzq59m6k28WKz280uyaMg,2264
-guarddog/analyzer/sourcecode/go-exec-base64.yml,sha256=Y5TUfLrmU1e5FTYW2zRKwn8yluBARHSXPr6Mr5vMVOY,1554
-guarddog/analyzer/sourcecode/go-exec-download.yml,sha256=ZaZOvn3Xojsd2m8MQGLW1H7p28bPdpEbmDd37q2ZiX4,2931
-guarddog/analyzer/sourcecode/go-exfiltrate-sensitive-data.yml,sha256=sb5GI-523zgE1nxNCrnRVjBSeOp7IfPy7qTQPBJMkco,3697
-guarddog/analyzer/sourcecode/npm-dll-hijacking.yml,sha256=1TvI6UtCGCOMy4Ii-kM_oICYbMRGeOYdgXrG7-zmJ_Y,3460
-guarddog/analyzer/sourcecode/npm-exec-base64.yml,sha256=zc5w2FTlHoZ7ot1flzlmYBkQu1I8eG1E63S5Aki7Goc,814
-guarddog/analyzer/sourcecode/npm-exfiltrate-sensitive-data.yml,sha256=UYWXdkAab-dg_6UwVjiauHmy-9nlKiF86qcyxAwUoXg,3488
-guarddog/analyzer/sourcecode/npm-install-script.yml,sha256=6BLe_V0SGEi1C79Y-FEIcMYHl4vLOOz8bLPrCU5jre8,1329
-guarddog/analyzer/sourcecode/npm-obfuscation.yml,sha256=UxR5ezKr9sFcXEh2JKa20IYqq25J0JDfje82O3jUYMg,2174
-guarddog/analyzer/sourcecode/npm-serialize-environment.yml,sha256=gFpr58INp44ZwxYZlIHyzpOgbVMDLv1ZRPTGAczX5dw,835
-guarddog/analyzer/sourcecode/npm-silent-process-execution.yml,sha256=qnJHGesNPNpxGa8n2kQMpttLGck-6vZjI_SsweDyk7M,3513
-guarddog/analyzer/sourcecode/npm-steganography.yml,sha256=XH0udcriAQq_6WOHAG4TpIedw8GgKyWx9gsG_Q_Fki8,915
-guarddog/analyzer/sourcecode/obfuscation.yml,sha256=dp0BeCYShcTS8QiijSa9U53r6jkCjrFBW5jjNVoXdUU,1224
-guarddog/analyzer/sourcecode/shady-links.yml,sha256=uDYVWDh0u20oy2zbXTJns64lvrQzLi95CLWgnftvX6Y,3222
-guarddog/analyzer/sourcecode/silent-process-execution.yml,sha256=b6RjenMv7si7lXGak3uMmD7PMtQRuKPeJFggPW6UDNI,418
-guarddog/analyzer/sourcecode/steganography.yml,sha256=3ceO6SJhu4XpZEjfwelLdOxeZ4Ho1OgUjbcacwtOhR0,606
-guarddog/cli.py,sha256=Pk4WUD5a_TlPRpq2G4v_6FDGWu8IriXQPQ_ft8RXm5o,10692
-guarddog/ecosystems.py,sha256=1-emct9cGLU3V0drEdNmGFEmxMEmJHEQOuyOiuuoCGA,489
-guarddog/reporters/__init__.py,sha256=lHNa5ZDsaIpjzS7SmheD5_GGAimGitXU-DNk-Wn97bI,749
-guarddog/reporters/human_readable.py,sha256=WEyjOPdBE8adxC-tdFgwxcyDijsppLk4gIiZOUO69O0,4548
-guarddog/reporters/json.py,sha256=gpbucxGoXBA6s7fNRzhQwZ4P6gWyz7BowsmQrnm4x6U,802
-guarddog/reporters/reporter_factory.py,sha256=JUagC2UFkN2TZGpZIkI1MwMHEbwT9Ja1goQP95-k9SM,1465
-guarddog/reporters/sarif.py,sha256=diOHJcN3CkSBxBDDg6l9DiZ3ebtUNCw0Rwd7QxCpM9k,7691
-guarddog/scanners/__init__.py,sha256=KNZcGjKNPOs60qpOE8Hr_HsiaRIpJLNzA8qbyvebRIk,1924
-guarddog/scanners/github_action_project_scanner.py,sha256=ISoBqUurwN0lMBtXwcNoalo3ghlbOJkZs9vSNZOT0kk,4216
-guarddog/scanners/github_action_scanner.py,sha256=GxhUSetLvT8YxKUIZue9MWOE_IVugM2MdiluOy4f068,1745
-guarddog/scanners/go_package_scanner.py,sha256=OdCbwtjJow9AxEv34z7WBfgTamqKj5DxJh7dly_1NuY,2926
-guarddog/scanners/go_project_scanner.py,sha256=LqhoD1iShdlTO_hkmN2jckeTWARPOfCTkkizmRC6mbM,3348
-guarddog/scanners/npm_package_scanner.py,sha256=qBU0tCbW2pTL3cy5Y4JVAJyAGdvb-HY69qSQmjWbPxU,1968
-guarddog/scanners/npm_project_scanner.py,sha256=liz5Fyscab53IiSPg0T21Z0vT5eotcHPc_W5Xam4A88,4957
-guarddog/scanners/pypi_package_scanner.py,sha256=Tg7M837vhNZim3Jy9OMJSQY2C_m9C75UDy0S_5WKT6M,2375
-guarddog/scanners/pypi_project_scanner.py,sha256=hKA0LkokPQ9W-y96TS1rSdi5ergIMcuBuorRbCqEBQg,6522
-guarddog/scanners/scanner.py,sha256=RQ00CUg7i5nM6t9LZSXeQrRA9cdWy1ou0QW-VuO55zk,13694
-guarddog/utils/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-guarddog/utils/archives.py,sha256=jOXAhxZx-mTtpDidGGKxQg052CvaQOAVklvOeUn9HTQ,2593
-guarddog/utils/config.py,sha256=Msz7altsmNKry0vBPtL2BJ_VdBXsBFZX5ksLvXc2ix4,1403
-guarddog/utils/exceptions.py,sha256=23Kzl3exqYK6X-bcGUeb8wPmSglWNX3GIDPkJ6lQzo4,54
-guarddog/utils/package_info.py,sha256=TFjE1xsGNf60SuHlIeDV2pzMUbogl5TKJdSzswat6jI,953
-guarddog-2.6.0.dist-info/LICENSE,sha256=w1aNZxHyoyOPJ4fSdiyrr06tCJZbTjCsH9K1uqeDVyU,11377
-guarddog-2.6.0.dist-info/LICENSE-3rdparty.csv,sha256=cS61ONZL_xlXaTMvQXyBEi3J3es-40Gg6G-6idoa5Qk,314
-guarddog-2.6.0.dist-info/METADATA,sha256=RkFhL1I97xJuzxpLsEMDwyHroPphmmG6AfSPRznXgiU,1432
-guarddog-2.6.0.dist-info/NOTICE,sha256=nlyNt2IjG8IBoQkb7n6jszwAvmREpKAx0POzFO1s2JM,140
-guarddog-2.6.0.dist-info/WHEEL,sha256=b4K_helf-jlQoXBBETfwnf4B04YC67LOev0jo4fX5m8,88
-guarddog-2.6.0.dist-info/entry_points.txt,sha256=vX2fvhnNdkbEL4pDzrH2NqjWVxeOaEYi0sJYmNgS2-s,45
-guarddog-2.6.0.dist-info/RECORD,,