Skip to main content

A tool for preventing the installation of malicious npm and PyPI packages

Project description

Supply Chain Firewall

Test Code quality

Supply Chain Firewall

Supply Chain Firewall is a command-line tool for preventing the installation of malicious npm and PyPI packages. It is intended primarily for use by engineers to protect their development workstations from compromise in a supply-chain attack.

scfw demo usage

Given a command for a supported package manager, Supply Chain Firewall collects all package targets that would be installed by the command and verifies them against reputable sources of data on open source malware and vulnerabilities. The command is automatically blocked from running when any verifier returns critical findings for any target, generally indicating that the target in question is malicious. In cases where a verifier reports warnings for a target, they are presented to the user along with a prompt confirming intent to proceed with the installation.

Supply Chain Firewall includes default verifiers for the following data sources:

  • Datadog Security Research's public malicious packages dataset
  • OSV.dev advisories, both for malicious packages as well as vulnerabilities
  • Package registry metadata, warning when a package was published very recently
  • User-provided lists of custom findings for specific packages

Documentation specific to each default verifier and the configurable options they support may be found here.

Users may also implement their own custom verifiers for alternative data sources. A template for implementating a custom verifier may be found in examples/verifier.py. Details may also be found in the API documentation.

The principal goal of Supply Chain Firewall is to block 100% of installations of known-malicious packages within the purview of its data sources.


Interested in SCFW for your business use-case? Enroll as a design partner.

Check out the new Datadog Agent integration and Cloud SIEM content pack for SCFW.


Getting started

Installation

The recommended way to install Supply Chain Firewall is via pipx:

$ pipx install scfw

This will install the scfw command-line program into an isolated Python environment on your system and make it available in any other Python environment, including ephemeral ones created with venv or virtualenv. pipx may be installed via Homebrew on macOS or via the system package manager on major Linux distributions. Be sure to run pipx ensurepath after installation to properly configure your PATH.

Supply Chain Firewall can also be installed via pip install scfw directly into the active Python environment.

To check whether the installation succeeded, run the following command and verify that you see output similar to the following.

$ scfw --version
3.0.0

Post-installation steps

To get the most out of Supply Chain Firewall, it is recommended to run the scfw configure command after installation. This script will walk you through configuring your environment so that all commands for supported package managers are passively run through scfw as well as enabling Datadog logging, described in more detail below.

$ scfw configure
...

See the configure command documentation for details and command-line options.

Compatibility and limitations

Package manager Supported versions Inspected subcommands
npm >= 7.0 install (including aliases)
pip >= 22.2 install
poetry >= 1.7 add, install, sync, update

Supply Chain Firewall may only know how to inspect some of the "installish" subcommands for its supported package managers. These are shown in the above table. Any other subcommands are always allowed to run.

By default, scfw will refuse to run inspected subcommands with an unsupported version of a supported package manager. This is in keeping with its goal of blocking 100% of known-malicious package installations. In order to get the most out of scfw, please verify that you are running a supported version of your package manager and upgrade accordingly before using this tool.

Currently, Supply Chain Firewall is only fully supported on macOS systems, though it should run as intended on common Linux distributions. It is currently not supported on Windows.

Uninstalling Supply Chain Firewall

Supply Chain Firewall may be uninstalled via pip(x) uninstall scfw. Before doing so, be sure to run the command scfw configure --remove to remove any Supply Chain Firewall-managed configuration you may have previously added to your environment.

$ scfw configure --remove
...

Usage

$ scfw --help
usage: scfw [-h] [-v] [--log-level LEVEL] {audit,configure,run} ...

A tool for preventing the installation of malicious npm and PyPI packages.

positional arguments:
  {audit,configure,run}

options:
  -h, --help            show this help message and exit
  -v, --version         show program's version number and exit
  --log-level LEVEL     Desired logging level (default: WARNING, options: DEBUG, INFO, WARNING, ERROR)

Inspect package manager commands

To use Supply Chain Firewall to inspect a package manager command, simply prepend scfw run to the command you intend to run:

$ scfw run npm install react
added 1 package in 226ms

$ scfw run pip install -r requirements.txt
Package urllib3-2.6.2:
  - An OSV.dev advisory exists for package urllib3-2.6.2:
      * [High] https://osv.dev/vulnerability/GHSA-38jv-5279-wg99
[?] Proceed with installation? (y/N):
The installation request was aborted. No changes have been made.

See the run command documentation for details and command-line options.

Audit installed packages

Supply Chain Firewall can also use its verifiers to audit installed packages:

$ scfw audit npm
No issues found.

$ scfw audit --executable venv/bin/pip pip
Package pip-23.0.1:
  - An OSV.dev advisory exists for package pip-23.0.1:
      * [Medium] https://osv.dev/vulnerability/GHSA-mq26-g339-26xf
  - An OSV.dev advisory exists for package pip-23.0.1:
      * [Low] https://osv.dev/vulnerability/PYSEC-2023-228
Package setuptools-65.5.0:
  - An OSV.dev advisory exists for package setuptools-65.5.0:
      * [High] https://osv.dev/vulnerability/GHSA-cx63-2mw6-8hw5
  - An OSV.dev advisory exists for package setuptools-65.5.0:
      * [High] https://osv.dev/vulnerability/GHSA-5rjg-fvgr-3xxf
  - An OSV.dev advisory exists for package setuptools-65.5.0:
      * [High] https://osv.dev/vulnerability/GHSA-r9hx-vwmv-q579
  - An OSV.dev advisory exists for package setuptools-65.5.0:
      * https://osv.dev/vulnerability/PYSEC-2022-43012

See the audit command documentation for details and command-line options.

Datadog Log Management integration

Supply Chain Firewall can optionally send logs of blocked and successful installations to Datadog.

scfw datadog log

Logs may be forwarded to Datadog via the HTTP API or a local Datadog Agent process. A Datadog API key is required to enable log forwarding. Documentation on how to enable and configure these loggers may be found here.

Supply Chain Firewall can maintain a local JSON Lines log file that records all completed run and audit executions. Users are strongly encouraged to enable this logger, as having a centralized record of executed package manager commands, their outcomes, and installed packages over time can be useful in incident response scenarios. Once file logging has been enabled, users may separately configure the local Datadog Agent to tail this file and thereby ingest logs from SCFW with no additional overhead.

Supply Chain Firewall can also integrate with user-supplied loggers. A template for implementating a custom logger may be found in examples/logger.py. Refer to the API documentation for details.

Development

We welcome community contributions to Supply Chain Firewall. Refer to the CONTRIBUTING guide for instructions on building the API documentation and setting up for development.

Maintainers

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

scfw-3.0.0.tar.gz (59.3 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

scfw-3.0.0-py3-none-any.whl (73.3 kB view details)

Uploaded Python 3

File details

Details for the file scfw-3.0.0.tar.gz.

File metadata

  • Download URL: scfw-3.0.0.tar.gz
  • Upload date:
  • Size: 59.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for scfw-3.0.0.tar.gz
Algorithm Hash digest
SHA256 30ce18354c0ddc2c14141bc8129ca4e08c71172db7d493b54c52c932cc2adb0a
MD5 56b1d01755e03ce9951e8819fcce30a2
BLAKE2b-256 0bb70919b6d3a821903a5f2af197a610d2da5b7d71c6c5d50c33e6bfe01455d5

See more details on using hashes here.

Provenance

The following attestation bundles were made for scfw-3.0.0.tar.gz:

Publisher: pypi-release.yml on DataDog/supply-chain-firewall

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file scfw-3.0.0-py3-none-any.whl.

File metadata

  • Download URL: scfw-3.0.0-py3-none-any.whl
  • Upload date:
  • Size: 73.3 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for scfw-3.0.0-py3-none-any.whl
Algorithm Hash digest
SHA256 3dd7f32154856ba970c99be8d9cb999905f513681150d8f3d95671d29805f0ff
MD5 c551963775e5f6d761ee0b002d952bae
BLAKE2b-256 efc798456962e0dcb50680ea9a9247ee206062c380fa29a01f9e92c89110a9cc

See more details on using hashes here.

Provenance

The following attestation bundles were made for scfw-3.0.0-py3-none-any.whl:

Publisher: pypi-release.yml on DataDog/supply-chain-firewall

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page