Blocking malicious open source dependencies in pull requests with Minder and OSV.dev

Using data from the open source OSV.dev project and other sources, the open source Minder project can now block pull requests that contain malicious and deprecated packages, so that they can’t inadvertently be merged into your code. read the full post