Automating Open-Source Software Risk Management with OSSSanitizer.
osssanitizer
Identifying Open-Source License Violation and 1-day Security Risk at Large Scale
Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
