Documentation
Kratex limits what a compromised npm package can do, at install and at runtime. These docs take you from installing the CLI to writing your own policy.
$ npm i -g @kratex/cliStart here
Installation Install the CLI from npm and verify it runs. Quickstart Run a command under Kratex and watch a real compromised package get blocked. How it works In-process guards and caller-chain attribution: the model behind every decision.