Breaches that started with a stolen secret. Supply chain attacks, leaked API keys and compromised build pipelines, written up so you can quickly tell whether you're affected and what to do about it.
Incidents tracked 14
Packages affected 11
Secret types exposed 10
Ongoing right now 0 Is your project affected? Drop a package.json or lockfile here, or click to paste one. Runs in your browser — nothing is uploaded. Is your project affected? Paste a package.json, requirements.txt, go.mod or any lockfile and it gets checked against every incident on this page.
Everything runs in your browser. Nothing you paste or drop is uploaded.