Ward: Open-source tool intercepts npm installs to block supply chain attacks for Claude Code users
Ward is an open-source security tool built by Vanguard Defense Solutions after the [email protected] compromise incident. It hooks into your package manager and checks every package before install scripts execute.
When Claude Code runs npm install on your behalf, Ward automatically screens packages. The tool includes a Claude Code hook that intercepts every install command before execution, eliminating the need for manual intervention.
Key features
- Blocks known malware packages
- Detects typosquats (warns when packages like "axxios" resemble legitimate packages like "axios")
- Flags suspicious install scripts
- Identifies version anomalies
- Ships with 42 verified real-world attack patterns
Example output
$ npm install [email protected]
✗ ward: BLOCKED
This version steals SSH keys and cloud credentials
Safe version: 1.14.0Installation
npm install -g wardshield
ward initThe tool is MIT licensed and includes 286 tests. It was developed specifically for the Claude Code community following supply chain attack concerns.
Additional resources include a live threat feed at wardshield.com and the GitHub repository at Vanguard-Defense-Solutions/ward.
📖 Read the full source: r/ClaudeAI
👀 See Also
Essential File Blocking for AI Coding Assistants: A Practical Security Checklist
AI coding assistants read from your local disk, not just your repository, exposing files that .gitignore protects from GitHub but not from the agent. A Reddit discussion identifies critical files to block including AI assistant configs with API keys, service credentials, SSH keys, and environment files.
OpenClaw Security Gap Addressed by Agentic Power of Attorney (APOA) Spec
A developer has published an open specification called Agentic Power of Attorney (APOA) to address security concerns in OpenClaw, where agents currently access services like email and calendar with only natural language instructions as guardrails. The spec proposes per-service permissions, time-bounded access, audit trails, revocation, and credential isolation.
OpenClaw SOC Agent Integration for SIEM Home Lab Threat Hunting
A Reddit user shares their open-source SIEM setup called Red Threat Redemption on Debian 13, integrating Elasticsearch, Kibana, Wazuh, Zeek, and pfSense with Suricata, then adds an AI agent for automated threat correlation, hunting, and alert triage.
OpenClaw Skill Safety Scanner: 7.6% of 31,371 Skills Flagged as Dangerous
A developer built a tool that scanned the entire ClawHub registry and found 2,371 out of 31,371 skills contain dangerous patterns like wallet drainers, credential theft, and prompt injection. The tool provides API access and badges for checking skills before installation.