Live Threat Feed

The only public system with cryptographic receipts for every package version before an attack is disclosed. Detection runs continuously — fingerprint mutations, new install hooks, publisher changes, size spikes, and brand-new packages with suspicious patterns. Every finding links to independently verifiable receipts that prove exactly what the package contained at the moment it was captured.

How this works: Prechained monitors every npm publish in real time — capturing cryptographic receipts before takedowns occur. Findings are generated automatically from concrete before/after evidence: changed fingerprints, new install hooks, publisher changes, size spikes, and suspicious new packages. A finding is not a legal determination of malice — it is a documented, verifiable anomaly that warrants investigation. Receipts are independently verifiable against the public archive. Interpret findings with professional judgment.
Findings (recent)
High Severity
Finding Types
Ecosystems
Type:
Ecosystem:
Loading threat feed...