Security●Mid
Lateos/NPM-scan – open-source NPM supply chain scanner, v0.18.3
NPM supply chain scanner competing against Socket, Snyk, and npm audit.
Ship It
lateos-ai
1016d ago
Back to browse
GitHub Repository
Scan your code and infrastructure for quantum-vulnerable cryptography
0 starsTypeScript
Find quantum-vulnerable crypto in your code before 2030 hits
by postquant·Mar 4, 2026·1 point·1 comment
AI Analysis
●●●BangerSolve My ProblemWizardryBig Brain
Context-aware crypto risk: knows MD5 in UUID differs from MD5 in passwords.
Strengths
- •Context-aware grading separates false positives (uuid MD5) from real threats (auth MD5), reducing alert fatigue.
- •Scanned major sites and frameworks with real results; demonstrates working tool with tangible findings.
- •Covers TLS endpoints and 4+ languages (Python, JS, Go, Java) with a single scanner.
Weaknesses
- •Post-quantum crypto adoption is minimal (no site got better than C+); unclear if tool fills urgent gap today.
- •No timeline or deployment guide for actual PQC migration once risks are identified.
Category
Target Audience
Security engineers, DevSecOps teams, infrastructure/AppSec leads
Similar To
Trivy · Snyk · GitGuardian
Similar Projects
Security●●Solid
pqaudit – scan your codebase for quantum-vulnerable cryptography
Security scanner for Q-Day migration when Snyk doesn't track this yet.
Solve My ProblemNiche Gem
xMKx
212mo ago
Security●●Solid
An open source tool that checks for post-quantum crypto
Dedicated PQC scanner for TLS and SSH when testssl.sh lags behind.
Solve My ProblemShip It
cs02rm0
2027d ago
Security●●Solid
PACO A tool to find Dependency Confusion vulnerabilities
Real-world bug bounty wins ($625+), but dependency confusion detection is a known category.
Solve My ProblemNiche Gem
r00tSid
123mo ago
Security●●●Banger
NPM install is a security hole, so we built a guard for it
Blocks malicious packages at install-time before AI agents execute them on your machine.
Big BrainSolve My Problem
Sahil121
102mo ago
Developer Tools●Mid
DepGuard – Local dependency audit and license compliance (10 pkg mgrs)
Wraps native audits (npm audit, cargo audit) + license scanning, but Snyk and Dependabot already do this.
Solve My Problem
suhteevah
204mo ago