Only Use Open-Source Software You Trust
Detect risks, block attacks and innovate confidently
.gif)
Detect
Select projects to begin automatically identifying risks within 11 minutes of a package being published to the open-source ecosystem.
Block
Block threats from entering workstations and environments to alleviate post-build remediation and protect developers from being compromised.
.gif)
.gif)
Innovate
Enforce security policies and enable developers to build faster, with more confidence.


Malware
|
Mar 29, 2023
The Phylum Research Team
Phylum Discovers NPM Package mathjs-min Contains Credential Stealer
Phylum identifies software supply chain attackers subtly modifying a...


Malware
|
Mar 22, 2023
The Phylum Research Team
Malicious Actors Use Unicode Support in Python to Evade Detection
Phylum uncovers a threat actor taking advantage of how the Python in...


Malware
|
Feb 28, 2023
The Phylum Research Team
A PyPI typosquatting campaign post-mortem
Phylum performs a thorough breakdown of a typosquat campaign on PyPI...
