The Dependency Combobulator is an open source Python-based toolkit that helps developers discover malicious software components that may have accidentally been added to their projects.
Go to Source
Author: Fahmida Y. Rashid, Features Editor, Dark Reading