Aikido Intel is the real-time supply chain intelligence feed. We detect malware and vulnerabilities in open-source ecosystems within minutes.
Block malicious packages, IDE extensions, browser plugins, and AI tools before install.
We'll send you updates on incidents as and when they happen
141 Mastra npm packages were compromised in a supply chain attack that injected a malicious dependency to silently download and execute a payload at install time.
.jpg)
A coordinated campaign of at least 15 JetBrains IDE plugins, published under seven vendor accounts, exfiltrates the AI provider API key you paste into their settings.
The compromised onering Rust crate v1.4.1 on crates.io shipped a malicious build.rs that exfiltrates the diff of your latest commit to a hosted Sentry endpoint every time you build.
Our engine automates security analysis using the same methodologies trusted by professional pentesters.
Use our threat intelligence to strengthen your internal security operations. Get access through our commercial API.
Block malicious packages, IDE extensions, browser plugins, and AI tools before install.
Secure third-party dependencies, identify real threats, remediate automatically with Aikido.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
SOC 2Compliant
ISO 27001Compliant
