lmbot

lavamoat

`lavamoat` is a NodeJS runtime where modules are defined in [SES][SesGithub] Compartments. It aims to reduce the risk of malicious code in the app dependency graph, known as "software supply chain attacks".

@lavamoat/aa

LavaMoat's secure package naming convention

@lavamoat/across

across

@lavamoat/allow-scripts

A tool for running only the dependency lifecycle hooks specified in an allowlist.

@lavamoat/basalt

Node bindings for basalt

@lavamoat/basalt-darwin-arm64

This is the **aarch64-apple-darwin** binary for `@napi-rs/package-template`

@lavamoat/basalt-darwin-x64

This is the **x86_64-apple-darwin** binary for `@napi-rs/package-template`

@lavamoat/basalt-linux-x64-gnu

This is the **x86_64-unknown-linux-gnu** binary for `@napi-rs/package-template`

@lavamoat/basalt-win32-x64-msvc

This is the **x86_64-pc-windows-msvc** binary for `@napi-rs/package-template`

lavamoat-browserify

browserify plugin for sandboxing dependencies with LavaMoat

lavamoat-core

LavaMoat kernel and utils

@lavamoat/git-safe-dependencies

Opinionated dependency linter for your git/github dependencies

@lavamoat/lavadome-core

@lavamoat/lavadome-javascript

@lavamoat/lavadome-react

@lavamoat/lavapack

LavaMoat packer

@lavamoat/lavatube

lavatube

@lavamoat/laverna

Publish multiple workspaces (that's all)

@lavamoat/mpc-client

Threshold signatures multi-party compute client library

@lavamoat/mpc-ecdsa-wasm

Webassembly bindings to multi-party-ecdsa

@lavamoat/mpc-snap-wasm

Webassembly utilities for the threshold signatures snap

@lavamoat/node

Next-gen LavaMoat for Node.js

@lavamoat/preinstall-always-fail

Worried about accidentally running `yarn` or `npm` with script hooks enabled such as `preinstall` or `postinstall`?

@lavamoat/react-native-lockdown

LavaMoat React Native lockdown for running Hardened JavaScript in React Native apps

@lavamoat/snow

standardize how to recursively own newborn windows within a web app, from the context of the app itself