Список вредоносных и политизированных репозиториев https://toxic-repos.ru
Go to file
2024-10-02 18:40:57 +07:00
.github Шаблон issue для новой записи в базе 2024-07-16 06:49:42 +07:00
data Фикс двойных пробелов 2024-10-01 19:48:51 +03:00
scripts UTF-8 for export script 2024-08-29 02:09:29 +07:00
.gitattributes Added web app to view database 2022-05-08 09:49:14 +03:00
.gitignore gitignore 2024-08-28 22:03:04 +03:00
CHANGELOG.md list update 2023-11-15 09:41:40 +03:00
CODE_OF_CONDUCT.md add CODE_OF_CONDUCT.md & update README.md 2022-04-15 12:08:08 +03:00
HOW-TO-ADD.md Update HOW-TO-ADD.md 2024-06-17 00:15:30 +07:00
HOW-TO-REPORT.md fix links 2024-06-17 00:18:06 +07:00
LICENSE Initial commit 2022-03-17 20:49:26 +03:00
README.md fix record count 2024-10-01 23:56:42 +07:00

toxic-repos


Now you can send information to be added to the list via telegram bot! DarkSider BOT

Also join our telegram chat. There, information about "toxic repositories" appears even faster!


We are against discrediting open source software

What is this?

Recently, cases of adding code of varying degrees of danger to popular Open Source projects have become more frequent. This can pose a threat to people, and also undermines the credibility of the Open Source community and Open Source as such.

🔗 Web site | 💬 Telegram channel | 💬 Telegram chat | 💬 Telegram BOT

Statistics

Records in the database: more than 800

CHANGELOG

Additionally

CSV | JSON | SQLite

Recommendations

  • Code isolation in containers, including intermediate code on developers' machines.
  • Fork all libraries (if possible) and containers to yourself.
  • Mirroring package repositories.
  • Inclusion in CI of at least search by keywords, UTF characters with the image of the Ukrainian flag and comparison of the list of files with the whitelist.
  • Research on code analysis tools.
  • Sending a report according to instructions

Have an idea for improvement?

Contributors