Skip to content

Thinklanceai/sentinelai

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
__pycache__
__pycache__
 
 
README.md
README.md
 
 
cli.py
cli.py
 
 
main.py
main.py
 
 
monitor.py
monitor.py
 
 
requirements.txt
requirements.txt
 
 
scanner.py
scanner.py
 
 
simulate_attack.py
simulate_attack.py
 
 

Repository files navigation

Sentinel AI

Runtime watchdog for Python package installations

Detects malicious .pth files and suspicious behaviors during Python package installations — inspired by the LiteLLM PyPI attack.

Features

  • Detects .pth files that execute code automatically
  • Monitors access to sensitive files (SSH keys, .env)
  • CLI with instant feedback and color-coded alerts
  • Demonstration script to simulate a malicious package

Installation

```bash pip install -r requirements.txt ```

Usage

Simulate a malicious package

```bash python simulate_attack.py ```

Scan a package

```bash python cli.py scan-install requests ```

Example output: ``` 🚨 HIGH RISK DETECTED

  • /path/to/malicious_test.pth → Contains executable import statement Recommendation: DO NOT TRUST this package ```

License

MIT

About

Runtime watchdog for Python package installations — detects malicious .pth files and supply chain attacks.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages