Smelly

5.0(

1 rating

)

Extension Developer Tools4 users

Overview

Smelly: A nose for vulnerable dependencies

Smelly is your lightweight browser companion for discovering security vulnerabilities in open source dependencies instantly, as you explore package registries. Smelly simply monitors package URLs you visit (like npm, PyPI, and NuGet), extracts the package name and version directly from the address, and checks them against the trusted OSV.dev vulnerability database. When it finds something smelly — an outdated or insecure version — it shows you the details and a recommended upgrade path, right in your browser. What Smelly Does? - Automatically detects when you visit supported package pages on supported package repositories. - Queries the OSV.dev API for known vulnerabilities in the package version. - Displays issues in a clean popup view with: - CVE / GHSA identifiers - Severity levels and summaries - Affected ranges - Safe upgrade versions - Recommends the minimal secure version to upgrade to — keeping your dependencies clean and current. Upcoming Support More ecosystems are on the way — including Maven, Go, and more. Privacy & Security - No DOM access or page scraping. - No data collection, telemetry, or tracking. - Only outbound calls are made to the OSV.dev API. - All logic runs locally in your browser. Keywords: security, osv, vulnerability, cve, dependency, npm, pypi, nuget, open source, devsecops, supply chain, package security

5 out of 5
1 rating
Learn more about results and reviews.

Details

Version
0.0.2
Updated
October 10, 2025
Flag concern
Offered by
Gurunath
Size
284KiB
Languages
English
Developer
Email
gurunath.me+chrome@gmail.com
Non-trader
This developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.

Privacy

The developer has disclosed that it will not collect or use your data.

This developer declares that your data is

Not being sold to third parties, outside of the approved use cases
Not being used or transferred for purposes that are unrelated to the item's core functionality
Not being used or transferred to determine creditworthiness or for lending purposes

Support

For help with questions, suggestions, or problems, visit the developer's support site

Bug Hunter Toolkit

0.0

Professional bug hunting and penetration testing toolkit with essential security tools

Socket Security

5.0

Secure your supply chain and ship with confidence

clearspace

4.8

Enhanced browsing: more focus, less distraction

Scam Shield

5.0

AI-powered scam detection extension

SquareX: Be Secure, Anonymous, Private Online

4.9

SquareX: Be Fearless Online

Acessibilidade Auditoria

5.0

Auditoria de acessibilidade via axe-core no clique do botão direito

Email Security Detector

0.0

Analyze emails for potential security risks and phishing attempts

CAST Highlight SCA Chrome Extension

5.0

Check health of Open Source components directly from forge websites (github, gitlab, npmjs...)

Unstoppable Domains

3.9

A crypto wallet for domainers: easily interact with onchain identities, assets and apps.

Vulners Lookup

5.0

Automatically detect and highlight CVE IDs on web pages with vulnerability information from Vulners.com

Fingerprint Spoofer

4.4

Helps to spoof browser fingerprinting

OSINT Angel

0.0

OSINT Angel is a browser extension that aids in gathering and analyzing OSINT data from various sources.