Recently, I've improved my Python library, hexora. I wrote it to detect malicious Python code using static analysis. In the new v.0.3.0 release, I've added new detections, and we now also use a simple machine learning model to analyze the whole file. The machine learning model uses code structure features, semantic features, and static code analysis to assess the entire Python file. Although the model can detect malicious code without any detections coming from static analysis, its main use case is to filter false positives. I've been testing it against newly published PyPI packages and it detects 2-10 new malicious packages each day. Due to the number of published packages, before the machine learning model, I was getting around 5-10 false positives for 1[......]
No comments yet. Log in to reply on the Fediverse. Comments will appear here.