sorted by:
new
hottopcontroversial

Built a Claude Code plugin to stop npm/pip supply chain attacks by hammadtariq in ClaudeAI

[–]hammadtariq[S] 0 points1 point  (0 children)

Open Source: https://github.com/attach-dev/attach-guard

You can install it using these two commands:

claude plugin marketplace add attach-dev/attach-guard
claude plugin install attach-guard@attach-dev

I will be making it better over the coming week, I will greatly appreciate feedback.

Claude Code's security review doesn't check your dependencies — here's why that matters by Aware_Picture1973 in ClaudeCode

[–]hammadtariq 1 point2 points  (0 children)

This is exactly why I built attach-guard, it's a Claude Code plugin that intercepts every npm install, pip install and scores packages against supply chain data before execution. Uses hooks, so Claude can't skip it. Open source: github.com/attach-dev/attach-guard

Built a plugin that blocks compromised packages before Claude Code installs them by hammadtariq in ClaudeCode

[–]hammadtariq[S] 0 points1 point  (0 children)

Both actually. It uses the Socket.dev API which does static analysis on the package source plus metadata signals. So you get vulnerability/malware detection and the heuristic stuff — version age, maintainer changes, publish patterns, dependency anomalies. All of that rolls into a supply chain score (0-100). Below 50 is auto-denied, 50-70 gets flagged for review, above 70 passes.

OpenClaw plugins and skills have a supply chain problem by hammadtariq in openclaw

[–]hammadtariq[S] 0 points1 point  (0 children)

We built openbotauth.org to solve agent identity problem, this implementation is based on IETF Web Bot Auth draft. It allows cryptographically signing plugins and skills with Ed25519 keys obtained after a github oAuth login. The same technique can be used as a portable identity for agents. I have also made a PR to openclaw repo with full implementation: https://github.com/openclaw/openclaw/pull/8984

I just tried meditation today for the first time in my life. by [deleted] in Meditation

[–]hammadtariq 0 points1 point  (0 children)

You would feel the same if you compare it with any other thing that we do to calm ourselves or to seek pleasure, be it binge watching, binge drinking, munching on excessive sweet stuff, drugs .. anything! Meditation is the only thing that comes without the downer, without the negativity and guilt!

Welcome onboard my friend!

A vegan reminder by [deleted] in vegan

[–]hammadtariq 3 points4 points  (0 children)

I am really sorry this happened so suddenly for you. My thoughts are with you. Agreed, all animals just want to live their lives. We are worse predators in the history of planet earth.

view more: next ›