Security NPM Scanner

This repository contains a lightweight Bash script to scan for known malicious NPM packages in your project directories.

Usage

./scan-malicious-npm.sh [directory]

• Scans all package.json and package-lock.json files in the specified directory (or current directory by default).
• Alerts if any of the following malicious packages are found:
  • mysql-dumpdiscord
  • nodejs.discord
  • malinssx
  • malicus
  • maliinn
  • sqlcommenter_rails

Requirements

• Bash shell
• Standard Unix tools: find, grep, sed

License

MIT