I built an npm malware scanner in Rust because npm audit isn't enough

aegis-scan is an open-source Rust CLI that catches malicious npm packages — obfuscated eval, typosquatting, maintainer takeovers — before they hit your node_modules.