Doria; Swahili for patrol.

An AI-powered supply chain security project. We build tools that intercept threats at install time, reason about risk in context, and autonomously remediate vulnerabilities before they ever touch your codebase.

A drop-in replacement for your package manager. Intercepts installs, scans for malicious code, catches AI-hallucinated packages, and blocks threats before they hit your machine. No config required.

Continuous visibility for security teams. Real-time risk assessment across your organization's repositories, exposed secrets tracking, RBAC, and autonomous remediation oversight built for enterprise workflows.

• AI-Powered Threat Detection: We leverage advanced AI models to analyze package metadata, code patterns, and behavioral signals to identify malicious packages with high accuracy.
• Contextual Risk Assessment: Doria doesn't just flag threats; it provides detailed contextual information about why a package is risky, helping engineers make informed decisions.
• Autonomous Remediation: For enterprise users, Doria can automatically block or quarantine malicious packages, preventing them from ever being installed in your environment.
• Developer-Friendly: Our tools are designed to integrate seamlessly into existing workflows, providing security without friction. No complex configurations or false positives—just effective protection.
• Open Source Commitment: We believe in transparency and community collaboration. Our CLI is open source, allowing anyone to contribute, audit, and benefit from our security innovations.

🥇	ITWeb Security Summit Hackathon 2026 First place solution  ·  Sandton Convention Centre  ·  SS26HACK