stillrunning is a supply chain security platform designed for organizations that lack dedicated security teams. It addresses the threat of malicious software packages infiltrating ecosystems like npm and PyPI, using an AI-powered static analysis engine to detect and block such threats before they can execute. The platform emerged in response to sophisticated supply chain attacks, such as the campaign by North Korean state hackers who published over 1,700 malicious packages that evaded traditional antivirus detection.
env and SSH keys, SHA256-based file integrity monitoring, and autonomous AI-driven incident response. Its AI features include crash diagnosis, automatic restarts, and plain-English explanations for alerts, with the ability to reply to alerts for further information. stillrunning checks every package against a threat database updated hourly and is capable of intercepting threats at install time, before code is run. It also supports real-time monitoring and protection for production systems, as demonstrated by its use in protecting an operational Bitcoin trading bot.
stillrunning integrates with a variety of AI coding agents, including Claude Code, Cursor, Devin, Replit, GitHub Copilot, Windsurf, Aider, and any pip or npm agent. It is delivered as a process monitoring agent installable on Linux, Mac, Windows, Docker, and Raspberry Pi. The platform offers a range of pricing plans: a free tier with basic protection, a Personal plan for solo developers, a Basic plan for indie builders, an AI plan for teams seeking advanced AI response features, and Enterprise plans with additional compliance, support, and deployment options, including on-premises and custom data residency for regulated industries. Core components are built on open source, with enterprise features available through paid plans.
The platform is positioned as a unified security stack that combines endpoint protection, dependency scanning, process monitoring, alerting, and incident response, aiming to replace multiple enterprise tools with a single agent. Its target audience includes small to midsize teams and companies without dedicated security staff, as well as those in regulated industries requiring compliance and reporting features.
stillrunning sits in PulseGate's Security & compliance platforms category. It protects developers from installing or importing malicious packages in their software supply chain. stillrunning is an open-source project aimed at developers and security teams. The project is open source (MIT). The product ships for the web and the command line.
It is developed by johhnyg, and the product first shipped in 2026. The project is developed in the open on GitHub with 62 commits in the last 90 days. Among its 5 catalogued features are malicious package blocking, AI-powered security, and supply chain protection. It exposes integrations via an MCP server.
Latest indexed changes and source events
Other apps tracked under the same category.