Inspectopedia
 
2025.1
Multiple

Malicious dependency

Warning
Last modified: 01 April 2025

Reports malicious NPM and PyPI dependencies declared in your project.

Fixing the reported problems helps prevent your software from being compromised by an attacker.

Remove a malicious package to solve a problem.

Locating this inspection

By ID

Can be used to locate inspection in e.g. Qodana configuration files, where you can quickly enable or disable it, or adjust its settings.

MaliciousLibrariesLocal
Via Settings dialog

Path to the inspection settings via IntelliJ Platform IDE Settings dialog, when you need to adjust inspection settings directly from your IDE.

Settings or Preferences | Editor | Inspections | Security

Inspection Details

By default bundled with:

GoLand 2025.1, IntelliJ IDEA 2024.3, PhpStorm 2024.3, PyCharm 2025.1, Qodana for Go 2025.1, Qodana for JS 2025.1, Qodana for JVM 2024.3, Qodana for PHP 2024.3, WebStorm 2025.1

Can be installed with plugin:

Package Checker, 251.24737