Package manager security plugin #177
Description
When using a package manager like PIP or NPM, these don't check for vulnerabilities and can compromise the environment. We need to build a plugin which would block the installation of compromised dependencies.
The tool would observe the onchain data for that and would be able to block dependencies which do not respect a certain level of security. Eg accept low CVEs or only block criticals.