Alexander Klimetschek alexkli

Principal Scientist @adobe. Previously Day Software, Mindquarry (co-founded). HPI Potsdam Alumni.

26 followers · 0 following

@adobe
San Francisco
example.com
@alexkli

View GitHub Profile

Recently created

Least recently created

Recently updated

Least recently updated

alexkli / scan-npm-dependencies.md

Last active November 11, 2025 16:34

Node.js script to scan for compromised npm dependencies (Shai Hulud and others)

Update #2 September 23, 2025: Updated the csv files based on snyk.io sources as of today:

The shai hulud csv is updated with new dependencies and no longer includes the qix attack dependencies.
The qix csv is updated with new dependencies found.

Update September 23, 2025: Updated the script to fix a critical bug where it did not detect scoped packages (such as @art-ws/di-node) in project lockfiles.

Scan for compromised npm dependencies

gboudreau / AuthyToOtherAuthenticator.md

Last active December 10, 2025 05:50 — forked from Ingramz/AuthyToOtherAuthenticator.md

Export TOTP tokens from Authy

Exporting your 2FA tokens from Authy to transfer them into another 2FA application

IMPORTANT - Update regarding deprecation of Authy desktop apps

Past August 2024, Authy stopped supported the desktop version of their apps:
See Authy is shutting down its desktop app | The 2FA app Authy will only be available on Android and iOS starting in August for details.

And indeed, after a while, Authy changed something in their backend which now prevents the old desktop app from logging in. If you are already logged in, then you are in luck, and you can follow the instructions below to export your tokens.

If you are not logged in anymore, but can find a backup of the necessary files, then restore those files, and re-install Authy 2.2.3 following the instructions below, and it should work as expected.