Powered by OpenAIRE graph
Found an issue? Give us feedback
image/svg+xml art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos Open Access logo, converted into svg, designed by PLoS. This version with transparent background. http://commons.wikimedia.org/wiki/File:Open_Access_logo_PLoS_white.svg art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos http://www.plos.org/ ZENODOarrow_drop_down
image/svg+xml art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos Open Access logo, converted into svg, designed by PLoS. This version with transparent background. http://commons.wikimedia.org/wiki/File:Open_Access_logo_PLoS_white.svg art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos http://www.plos.org/
ZENODO
Software
Data sources: ZENODO
Zenodo
Claim

pkg-inject: Scanning npm and PyPI Packages for Prompt-Injection Payloads Targeting AI Coding Assistants

integration_instructionsResearch softwarekeyboard_double_arrow_right Software Under curationPublisher:Zenodo
Authors: Mohiuddin, Syed Anas;

doi: 10.5281/zenodo.20502476

pkg-inject: Scanning npm and PyPI Packages for Prompt-Injection Payloads Targeting AI Coding Assistants

Abstract

pkg-inject is an open-source scanner that inspects npm and PyPI packages for prompt-injection payloads embedded in package metadata and documentation - content that AI coding assistants (GitHub Copilot, Cursor, Claude Code) read and may act upon. It addresses an emerging software supply-chain threat at the intersection of package security and large language model agents.

Powered by OpenAIRE graph
Found an issue? Give us feedback