Framework To Detect And Prevent Dependency Confusion Leakage And Potential Attacks.


  1. Pluggable – intervene at the commit, build, and release stages of the SDLC.
  2. Extensible – add your own package management scheme or code source of choice with ease.
  3. Multi-purpose Heuristic-Engine – an abstract package data model that gives a heuristic approach that is agnostic to the heuristic method.
  4. Being able to support a wide range of technologies
  5. Versatile – decision trees can be based on toolkit-provided insights or conclusions.

Disclaimer: The intended use for the tool is strictly educational and should not be used for any other purposes

Download Link: