{"generatedAt":"2026-07-12T07:00:00.434Z","strata":[{"label":"GitHub Hunt (supply-chain)","checked":40,"unique":40,"inTF":0,"uniquePct":100},{"label":"Research imports","checked":30,"unique":30,"inTF":0,"uniquePct":100},{"label":"OTX (our pulses)","checked":30,"unique":9,"inTF":21,"uniquePct":30},{"label":"Bulletproof ASN shitlist","checked":20,"unique":20,"inTF":0,"uniquePct":100},{"label":"Honeypot catches","checked":15,"unique":15,"inTF":0,"uniquePct":100},{"label":"OSV malicious packages","checked":40,"unique":40,"inTF":0,"uniquePct":100,"structural":true}],"summary":{"totalSampled":175,"uniqueToUs":154,"uniquePct":88,"comparedAgainst":"ThreatFox (abuse.ch)","methodology":"Stratified sample of independently-sourced IOCs checked via ThreatFox search_ioc API","note":"Package uniqueness is structural — ThreatFox has no package feed. Network-IOC uniqueness is empirically sampled."},"source":"durable"}