This open-source tool scans uploads before they become a problem

Most file upload flows are built for convenience first. A user selects a file. The backend checks the MIME type. Maybe the extension too. Then the file gets stored. That sounds fine — until someone uploads something that only looks harmless. A renamed executable. A hostile archive. A risky PDF. A file that passes basic checks but becomes a problem later when another system stores, unpacks, parses, or serves it. That is exactly the gap I wanted to reduce. So I built Pompelmi — a free, open-source, local-first file upload scanner for Node.js. It helps inspect untrusted files before they move deeper into your system. What Pompelmi checks Pompelmi is designed for upload endpoints that cannot trust: filenames extensions client-provided MIME types It can help detect things like: MIME spoofing and magic-byte mismatches archive abuse such as ZIP bombs, traversal, and deep nesting polyglot files risky document structures optional YARA-based signature matches The idea is simple: inspect first, s

This open-source tool scans uploads before they become a problem

Related Articles

LeetCode Solution: 1009. Complement of Base 10 Integer

SaaS Boilerplates: What They Are, And 10 of the Best

I replaced all my chargers with this 205W GaN adapter - now I never travel without it

Anthropic just introduced the Claude Architect Certification — and it’s not easy.

Claude Code Has 58 Tips. They’re Not a Menu. Here’s the Stack.

Related Articles

News
LeetCode Solution: 1009. Complement of Base 10 Integer
Dev.to Tutorial • 50m ago

News
SaaS Boilerplates: What They Are, And 10 of the Best
SitePoint • 51m ago

News
I replaced all my chargers with this 205W GaN adapter - now I never travel without it
ZDNet • 1h ago

News
Anthropic just introduced the Claude Architect Certification — and it’s not easy.
Medium Programming • 1h ago

News
Claude Code Has 58 Tips. They’re Not a Menu. Here’s the Stack.
Medium Programming • 1h ago