macOS
brew install malcontentlocal Homebrew formula metadata
安装
brew install malcontentlocal Homebrew formula metadata
sudo apk add malcontentAlpine Linux edge package indexes · malcontent · 来源: dl-cdn.alpinelinux.org
sudo apt install malcontentDebian stable package indexes · malcontent · 来源: deb.debian.org
sudo dnf install malcontentFedora Rawhide package metadata · malcontent · 来源: dl.fedoraproject.org
nix profile install nixpkgs#malcontentnixpkgs package indexes · malcontent · 来源: raw.githubusercontent.com
sudo pacman -S malcontentArch Linux sync databases · malcontent · 来源: geo.mirror.pkgbuild.com
sudo zypper install malcontentopenSUSE Tumbleweed package metadata · malcontent · 来源: download.opensuse.org
概览
Supply Chain Attack Detection, via context differential analysis and YARA
历史
malcontent is Chainguard's open source command-line scanner for discovering supply-chain compromises through context, differential analysis, and YARA rules. Its executable is `mal`, and the README describes analyze, diff, and scan modes for binaries, archives, directories, and OCI images.
The GitHub repository was created in February 2024 and is maintained under the Chainguard organization. The README presents it as a "subtle malware discovery tool" for supply-chain attack detection, using a large embedded YARA rule set and contextual comparisons rather than only standalone signature hits.
malcontent's project shape reflects the post-SolarWinds and post-3CX supply-chain security era: it is built for CI/CD use, supports container images and archives, and treats behavior changes between releases as a key signal. The README uses the 3CX compromise as an example of differential analysis surfacing newly risky behavior.
Public adoption is still young but visible through the GitHub repository's releases, stars, forks, and companion GitHub Action. The README emphasizes Linux programs while noting useful coverage for other Unix platforms such as macOS and, to a lesser extent, Windows.
Chainguard also references malcontent in its supply-chain security writing as a binary analysis tool that can surface newly introduced capabilities without requiring full reverse engineering. That positions it as a practical package-review tool for maintainers evaluating suspicious upstream or dependency changes.
`mal analyze` enumerates capabilities in a target, `mal diff` compares two paths, archives, reports, or images, and `mal scan` reports findings above a risk threshold. It supports output formats including JSON, YAML, Markdown, text, terminal, and TUI-style output, and includes an opt-in `--oci-auth` mode for private image pulls.
malcontent matters to package maintainers because it targets the hard question a package diff raises: did this new release gain suspicious behavior? It is especially relevant to registry ecosystems, binary packages, vendored archives, container images, and CI checks where maintainers need quick triage before publishing or upgrading.
安全态势
没有找到 malcontent 的匹配本地密钥处理 manifest。Nucleus 软件包元数据仍在此发布,以便未来覆盖拥有稳定的软件包 URL。
在无人值守的代理使用前,请检查该工具是否读取明文凭据、写入远程状态、发布制品或调用插件。
可执行文件
| 命令 | 类型 | 暴露范围 | 备注 |
|---|---|---|---|
mal | cli | 全局可执行文件 |
新鲜度
这些信号区分页生成时间、软件包管理器活动和上游发布比较。只有存在证据 URL 和可比较版本时,才会提示版本落后。
https://github.com/chainguard-dev/malcontent
安装元数据
| 软件包键 | brew:malcontent |
|---|---|
| 版本 | 1.25.1 |
| 软件包管理器 | Homebrew |
| 软件包管理器页面 | https://formulae.brew.sh/formula/malcontent |
| 主页 | https://github.com/chainguard-dev/malcontent |
| 仓库 | https://github.com/chainguard-dev/malcontent |
| 上游文档 | https://github.com/chainguard-dev/malcontent#readme |
| 许可证 | Apache-2.0 |
| 源码归档 | https://github.com/chainguard-dev/malcontent/archive/refs/tags/v1.25.1.tar.gz |
| 最后更新 | 2026-07-06T21:40:36Z |
| Pulse | updated |
| 依赖 | yara-x |
| 构建依赖 | go, pkgconf |
| Bottle | 可用 (于 arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | 未定义 |
| 服务 | 未声明 |
注册表事实
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | malcontent |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
源数据库匹配
匹配项来自外部软件包管理器索引,并与本地 Automic Vault 软件包链接分开显示。
gir1.2-malcontent-0 0.13.0-2+deb13u1
GObject introspection bindings for libmalcontent
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install gir1.2-malcontent-0gir1.2-malcontentui-1 0.13.0-2+deb13u1
GObject introspection bindings for libmalcontent-ui
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install gir1.2-malcontentui-1libmalcontent-0-0 0.13.0-2+deb13u1
library for parental control of applications
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install libmalcontent-0-0libmalcontent-0-dev 0.13.0-2+deb13u1
development files for libmalcontent
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install libmalcontent-0-devlibmalcontent-ui-1-1 0.13.0-2+deb13u1
library for parental control of applications - GTK widgets and dialogs
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install libmalcontent-ui-1-1libmalcontent-ui-dev 0.13.0-2+deb13u1
development files for libmalcontent-ui
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install libmalcontent-ui-devlibpam-malcontent 0.13.0-2+deb13u1
PAM module to control the time a user is spending on the computer
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install libpam-malcontentmalcontent 0.13.0-2+deb13u1
framework for parental control of applications
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install malcontentmalcontent-gui 0.13.0-2+deb13u1
GUI to configure malcontent
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install malcontent-guimalcontent
nix profile install nixpkgs#malcontentgir1.2-malcontent-0 0.11.1-1build4
GObject introspection bindings for libmalcontent
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install gir1.2-malcontent-0gir1.2-malcontentui-1 0.11.1-1build4
GObject introspection bindings for libmalcontent-ui
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install gir1.2-malcontentui-1libmalcontent-0-0 0.11.1-1build4
library for parental control of applications
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install libmalcontent-0-0libmalcontent-0-dev 0.11.1-1build4
development files for libmalcontent
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install libmalcontent-0-devlibmalcontent-ui-1-1 0.11.1-1build4
library for parental control of applications - GTK+ widgets and dialogs
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install libmalcontent-ui-1-1libmalcontent-ui-dev 0.11.1-1build4
development files for libmalcontent-ui
https://gitlab.freedesktop.org/pwithnall/malcontent/
sudo apt install libmalcontent-ui-dev来源线索
此页面由 av-web 从 scripts/generate-pkg-sqlite.py 生成的私有软件包 SQLite 工件提供。
View the package source record on GitHub.