Real-time supply chain threat detection for package ecosystems. Monitors PyPI and npm release streams, prioritizes packages by cascade impact across the dependency graph, and performs AST-based behavioral diff analysis to catch malicious updates, including stealth modifications to existing code, before they spread. - View it on GitHub