ResearchTrend.AI
5
0

MalGuard: Towards Real-Time, Accurate, and Actionable Detection of Malicious Packages in PyPI Ecosystem

Xingan Gao
Xiaobing Sun
Sicong Cao
Kaifeng Huang
Di Wu
Xiaolei Liu
Xingwei Lin
Yang Xiang
ArXiv (abs)PDFHTML
Main:14 Pages
5 Figures
Bibliography:3 Pages
11 Tables
Appendix:1 Pages
Abstract

Malicious package detection has become a critical task in ensuring the security and stability of the PyPI. Existing detection approaches have focused on advancing model selection, evolving from traditional machine learning (ML) models to large language models (LLMs). However, as the complexity of the model increases, the time consumption also increases, which raises the question of whether a lightweight model achieves effective detection. Through empirical research, we demonstrate that collecting a sufficiently comprehensive feature set enables even traditional ML models to achieve outstanding performance. However, with the continuous emergence of new malicious packages, considerable human and material resources are required for feature analysis. Also, traditional ML model-based approaches lack of explainability to maliciousthis http URL, we propose a novel approach MalGuard based on graph centrality analysis and the LIME (Local Interpretable Model-agnostic Explanations) algorithm to detect maliciousthis http URLovercome the above two challenges, we leverage graph centrality analysis to extract sensitive APIs automatically to replace manual analysis. To understand the sensitive APIs, we further refine the feature set using LLM and integrate the LIME algorithm with ML models to provide explanations for malicious packages. We evaluated MalGuard against six SOTA baselines with the same settings. Experimental results show that our proposed MalGuard, improves precision by 0.5%-33.2% and recall by 1.8%-22.1%. With MalGuard, we successfully identified 113 previously unknown malicious packages from a pool of 64,348 newly-uploaded packages over a five-week period, and 109 out of them have been removed by the PyPI official.

View on arXiv
@article{gao2025_2506.14466,
  title={ MalGuard: Towards Real-Time, Accurate, and Actionable Detection of Malicious Packages in PyPI Ecosystem },
  author={ Xingan Gao and Xiaobing Sun and Sicong Cao and Kaifeng Huang and Di Wu and Xiaolei Liu and Xingwei Lin and Yang Xiang },
  journal={arXiv preprint arXiv:2506.14466},
  year={ 2025 }
}
Comments on this paper