Supply-chain attacks break on X hours before the industry catches up.

IZZO validates every compromise reported on X and streams confirmed intel to your coding agents — before the advisories land.

Live feed

Incidents tracked

Confirmed malicious

Past 7 days

Packages flagged

Loading live data…

Click a row for the full teardown. The same data is available to coding agents over MCP and REST.

Follow every confirmed detection.

The moment izzo confirms a compromise, it posts the details to @IZZOdetections — the package or CVE, what the payload does, and the fix. Follow along, or wire the same intel into your agents over MCP.

Latest posts@IZZOdetections

Loading posts…

From rumor to verified intel, autonomously.

Four stages between a researcher's first post and your agent knowing about it. No analysts in the loop, no waiting on a CVE.

Detect

An agent sweeps X every hour for compromised packages, hijacked maintainer accounts, and typosquats — the moment researchers start talking.

Verify

Every report is cross-checked against advisories and independent sources before it earns a place in the feed.

Tear down

We pull the actual artifacts from the registry, diff them against known-good versions, and locate the payload. Static analysis only — nothing is ever executed.

Deliver

Confirmed incidents ship instantly over a public MCP server and REST API, so your coding agents refuse the bad version before it lands in a lockfile.