Supply-chain attacks break on X hours before the industry catches up.
IZZO validates every compromise reported on X and streams confirmed intel to your coding agents — before the advisories land.
Live feed
Incidents tracked
—
Confirmed malicious
—
Past 7 days
—
Packages flagged
—
Loading live data…
Click a row for the full teardown. The same data is available to coding agents over MCP and REST.
Follow every confirmed detection.
The moment izzo confirms a compromise, it posts the details to @IZZOdetections — the package or CVE, what the payload does, and the fix. Follow along, or wire the same intel into your agents over MCP.
Loading posts…
From rumor to verified intel, autonomously.
Four stages between a researcher's first post and your agent knowing about it. No analysts in the loop, no waiting on a CVE.
Detect
An agent sweeps X every hour for compromised packages, hijacked maintainer accounts, and typosquats — the moment researchers start talking.
Verify
Every report is cross-checked against advisories and independent sources before it earns a place in the feed.
Tear down
We pull the actual artifacts from the registry, diff them against known-good versions, and locate the payload. Static analysis only — nothing is ever executed.
Deliver
Confirmed incidents ship instantly over a public MCP server and REST API, so your coding agents refuse the bad version before it lands in a lockfile.