- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Bumblebee: Open-Source Supply Chain Security Scanner for Developer Machines
Bumblebee is a read-only, open-source supply chain security scanner that checks developer laptops for risky packages, editor extensions, browser extensions, and AI agent configs — without ever running a package manager or executing code.
In this video I cover:
• What supply chain attacks on developer machines look like
• How Bumblebee scans npm, PyPI, Go, RubyGems, MCP configs, VS Code & browser extensions
• The 3 scan profiles: baseline, project, and deep
• How to install, run a self-test, and scan your machine in under 2 minutes
• The structured NDJSON output and exposure catalog format
━━━━━━━━━━━━━━━━━━━━━━
🔗 GitHub Repo
https://github.com/perplexityai/bumblebee
📦 Install (requires Go 1.25+)
go install github.com/perplexityai/bumblebee/cmd/bumblebee@latest
✅ Self-test
bumblebee selftest
🔍 Baseline scan
bumblebee scan - profile baseline - inventory.ndjson
━━━━━━━━━━━━━━━━━━━━━━
📄 License: Apache 2.0
🖥️ Platforms: macOS & Linux
⚙️ Built with: Go 1.25+, zero non-stdlib dependencies
━━━━━━━━━━━━━━━━━━━━━━
Видео Bumblebee: Open-Source Supply Chain Security Scanner for Developer Machines канала MadushanX
In this video I cover:
• What supply chain attacks on developer machines look like
• How Bumblebee scans npm, PyPI, Go, RubyGems, MCP configs, VS Code & browser extensions
• The 3 scan profiles: baseline, project, and deep
• How to install, run a self-test, and scan your machine in under 2 minutes
• The structured NDJSON output and exposure catalog format
━━━━━━━━━━━━━━━━━━━━━━
🔗 GitHub Repo
https://github.com/perplexityai/bumblebee
📦 Install (requires Go 1.25+)
go install github.com/perplexityai/bumblebee/cmd/bumblebee@latest
✅ Self-test
bumblebee selftest
🔍 Baseline scan
bumblebee scan - profile baseline - inventory.ndjson
━━━━━━━━━━━━━━━━━━━━━━
📄 License: Apache 2.0
🖥️ Platforms: macOS & Linux
⚙️ Built with: Go 1.25+, zero non-stdlib dependencies
━━━━━━━━━━━━━━━━━━━━━━
Видео Bumblebee: Open-Source Supply Chain Security Scanner for Developer Machines канала MadushanX
bumblebee security scanner supply chain security developer security open source security tools go security tool npm security package manager security malicious packages software supply chain VS Code extension security MCP security browser extension security endpoint security developer laptop security PyPI security lockfile scanner SBOM alternative incident response tool security scanner 2025 perplexity security open source devtools security automation
Комментарии отсутствуют
Информация о видео
5 ч. 46 мин. назад
00:02:40
Другие видео канала
