TypeError
diff --git a/‎markdown/osv_supply_chain/osv_malicious_packages.md
+107 b/‎markdown/osv_supply_chain/osv_malicious_packages.md
+107
diff --git a/‎notebooks/osv_supply_chain/osv_malicious_packages.ipynb
+188 b/‎notebooks/osv_supply_chain/osv_malicious_packages.ipynb
+188
diff --git a/‎notebooks/osv_supply_chain/scripts/osv_downloader.py
+91 b/‎notebooks/osv_supply_chain/scripts/osv_downloader.py
+91
@@ -0,0 +1,107 @@
+---
+jupyter:
+  jupytext:
+    text_representation:
+      extension: .md
+      format_name: markdown
+      format_version: '1.3'
+      jupytext_version: 1.16.6
+  kernelspec:
+    display_name: Python 3 (ipykernel)
+    language: python
+    name: python3
+---
+
+```python vscode={"languageId": "python"}
+import pandas as pd
+
+df = pd.read_csv("../../data/osv/processed/osv_ecosystem_summary.csv")
+df.head(1)
+```
+
+```python vscode={"languageId": "python"}
+from great_tables import GT, md, html, nanoplot_options
+import pandas as pd
+import numpy as np
+import ast
+
+
+# Ensure `trend_data` is properly formatted as a comma-separated string
+df["trend_data"] = df["trend_data"].apply(
+    lambda x: ", ".join(map(str, np.array(ast.literal_eval(x))))
+    if isinstance(x, str) and x.startswith("[")
+    else ", ".join(map(str, x))
+    if isinstance(x, (list, np.ndarray))
+    else str(x)
+)
+
+df["icon"] = df["type"].replace({"Vulnerability": "bug", "Malicious Code": "skull"})
+
+color_map = {"bug": "purple", "skull": "red"}
+
+# Create a sorted table DataFrame with the desired columns
+table_df = df[
+    ["ecosystem", "icon", "total_affected", "peak_attack_year", "trend_data"]
+].sort_values(["total_affected", "ecosystem"], ascending=[False, True])
+
+# Generate the Great Table
+gt_table = (
+    GT(table_df)
+    .tab_header(
+        title=md("**OSV Security Trends**"),
+        subtitle=md(
+            "_Malicious Code & Vulnerability Insights Across Software Supply Chains_"
+        ),
+    )
+    .tab_stub(rowname_col="ecosystem")
+    .tab_stubhead(label="Ecosystem")
+    .tab_source_note(source_note=md("*Year Trends from 2014-2024*"))
+    .tab_source_note(
+        source_note=md(
+            "Data sourced from [OSV.dev](https://osv.dev) (Open Source Vulnerability) and analyzed for vulnerability & malicious code trends. Covers PyPI, npm, Maven, Go, RubyGems, NuGet, Packagist, Pub, CRAN, Hackage, Hex, and crates.io. Last updated: February 2025."
+        )
+    )
+    .tab_source_note(
+        source_note=md("**Legend:** Bug = Vulnerability | Skull = Malicious Code")
+    )
+    .tab_stubhead(label="Ecosystem")
+    .cols_label(
+        ecosystem="Ecosystem",
+        icon="Type",
+        total_affected="Total",
+        peak_attack_year="Peak",
+        trend_data="Year Trend",
+    )
+    .fmt_nanoplot(
+        "trend_data",
+        plot_type="bar",
+        reference_line="mean",
+        options=nanoplot_options(
+            data_bar_stroke_color="black",
+            data_bar_stroke_width=2,
+            data_bar_fill_color="darkgray",
+            reference_line_color="pink",
+        ),
+    )
+    .fmt_number(columns="total_affected", sep_mark=",", decimals=0)
+    .cols_align(align="left", columns=["ecosystem"])
+    .cols_align(
+        align="center",
+        columns=["icon", "total_affected", "peak_attack_year", "trend_data"],
+    )
+    .fmt_icon(columns="icon", fill_color=color_map)
+)
+
+
+# Generate the raw HTML from the table
+html_output = gt_table.as_raw_html()
+
+# Save it to an HTML file
+with open(
+    "../../data/osv/processed/osv_security_trends.html", "w", encoding="utf-8"
+) as f:
+    f.write(html_output)
+
+# Display the table
+gt_table
+```
@@ -0,0 +1,188 @@
+{
+ "cells": [
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "metadata": {
+    "ExecuteTime": {
+     "end_time": "2025-02-08T19:31:35.646100Z",
+     "start_time": "2025-02-08T19:31:34.663998Z"
+    },
+    "vscode": {
+     "languageId": "python"
+    }
+   },
+   "outputs": [
+    {
+     "data": {
+      "text/html": [
+       "<div>\n",
+       "<style scoped>\n",
+       "    .dataframe tbody tr th:only-of-type {\n",
+       "        vertical-align: middle;\n",
+       "    }\n",
+       "\n",
+       "    .dataframe tbody tr th {\n",
+       "        vertical-align: top;\n",
+       "    }\n",
+       "\n",
+       "    .dataframe thead th {\n",
+       "        text-align: right;\n",
+       "    }\n",
+       "</style>\n",
+       "<table border=\"1\" class=\"dataframe\">\n",
+       "  <thead>\n",
+       "    <tr style=\"text-align: right;\">\n",
+       "      <th></th>\n",
+       "      <th>ecosystem</th>\n",
+       "      <th>type</th>\n",
+       "      <th>total_affected</th>\n",
+       "      <th>most_affected_package</th>\n",
+       "      <th>peak_attack_year</th>\n",
+       "      <th>trend_data</th>\n",
+       "    </tr>\n",
+       "  </thead>\n",
+       "  <tbody>\n",
+       "    <tr>\n",
+       "      <th>0</th>\n",
+       "      <td>CRAN</td>\n",
+       "      <td>Vulnerability</td>\n",
+       "      <td>10</td>\n",
+       "      <td>readxl</td>\n",
+       "      <td>2023</td>\n",
+       "      <td>[0, 0, 0, 0, 0, 0, 0, 0, 0, 10, 0]</td>\n",
+       "    </tr>\n",
+       "  </tbody>\n",
+       "</table>\n",
+       "</div>"
+      ],
+      "text/plain": [
+       "  ecosystem           type  total_affected most_affected_package  \\\n",
+       "0      CRAN  Vulnerability              10                readxl   \n",
+       "\n",
+       "   peak_attack_year                          trend_data  \n",
+       "0              2023  [0, 0, 0, 0, 0, 0, 0, 0, 0, 10, 0]  "
+      ]
+     },
+     "execution_count": 1,
+     "metadata": {},
+     "output_type": "execute_result"
+    }
+   ],
+   "source": [
+    "import pandas as pd\n",
+    "\n",
+    "df = pd.read_csv(\"../../data/osv/processed/osv_ecosystem_summary.csv\")\n",
+    "df.head(1)"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "metadata": {
+    "vscode": {
+     "languageId": "python"
+    }
+   },
+   "outputs": [],
+   "source": [
+    "from great_tables import GT, md, html, nanoplot_options\n",
+    "import pandas as pd\n",
+    "import numpy as np\n",
+    "import ast\n",
+    "\n",
+    "\n",
+    "# Ensure `trend_data` is properly formatted as a comma-separated string\n",
+    "df[\"trend_data\"] = df[\"trend_data\"].apply(\n",
+    "    lambda x: \", \".join(map(str, np.array(ast.literal_eval(x))))\n",
+    "    if isinstance(x, str) and x.startswith(\"[\")\n",
+    "    else \", \".join(map(str, x))\n",
+    "    if isinstance(x, (list, np.ndarray))\n",
+    "    else str(x)\n",
+    ")\n",
+    "\n",
+    "df[\"icon\"] = df[\"type\"].replace({\"Vulnerability\": \"bug\", \"Malicious Code\": \"skull\"})\n",
+    "\n",
+    "color_map = {\"bug\": \"purple\", \"skull\": \"red\"}\n",
+    "\n",
+    "# Create a sorted table DataFrame with the desired columns\n",
+    "table_df = df[\n",
+    "    [\"ecosystem\", \"icon\", \"total_affected\", \"peak_attack_year\", \"trend_data\"]\n",
+    "].sort_values([\"total_affected\", \"ecosystem\"], ascending=[False, True])\n",
+    "\n",
+    "# Generate the Great Table\n",
+    "gt_table = (\n",
+    "    GT(table_df)\n",
+    "    .tab_header(\n",
+    "        title=md(\"**OSV Security Trends**\"),\n",
+    "        subtitle=md(\n",
+    "            \"_Malicious Code & Vulnerability Insights Across Software Supply Chains_\"\n",
+    "        ),\n",
+    "    )\n",
+    "    .tab_stub(rowname_col=\"ecosystem\")\n",
+    "    .tab_stubhead(label=\"Ecosystem\")\n",
+    "    .tab_source_note(source_note=md(\"*Year Trends from 2014-2024*\"))\n",
+    "    .tab_source_note(\n",
+    "        source_note=md(\n",
+    "            \"Data sourced from [OSV.dev](https://osv.dev) (Open Source Vulnerability) and analyzed for vulnerability & malicious code trends. Covers PyPI, npm, Maven, Go, RubyGems, NuGet, Packagist, Pub, CRAN, Hackage, Hex, and crates.io. Last updated: February 2025.\"\n",
+    "        )\n",
+    "    )\n",
+    "    .tab_source_note(\n",
+    "        source_note=md(\"**Legend:** Bug = Vulnerability | Skull = Malicious Code\")\n",
+    "    )\n",
+    "    .tab_stubhead(label=\"Ecosystem\")\n",
+    "    .cols_label(\n",
+    "        ecosystem=\"Ecosystem\",\n",
+    "        icon=\"Type\",\n",
+    "        total_affected=\"Total\",\n",
+    "        peak_attack_year=\"Peak\",\n",
+    "        trend_data=\"Year Trend\",\n",
+    "    )\n",
+    "    .fmt_nanoplot(\n",
+    "        \"trend_data\",\n",
+    "        plot_type=\"bar\",\n",
+    "        reference_line=\"mean\",\n",
+    "        options=nanoplot_options(\n",
+    "            data_bar_stroke_color=\"black\",\n",
+    "            data_bar_stroke_width=2,\n",
+    "            data_bar_fill_color=\"darkgray\",\n",
+    "            reference_line_color=\"pink\",\n",
+    "        ),\n",
+    "    )\n",
+    "    .fmt_number(columns=\"total_affected\", sep_mark=\",\", decimals=0)\n",
+    "    .cols_align(align=\"left\", columns=[\"ecosystem\"])\n",
+    "    .cols_align(\n",
+    "        align=\"center\",\n",
+    "        columns=[\"icon\", \"total_affected\", \"peak_attack_year\", \"trend_data\"],\n",
+    "    )\n",
+    "    .fmt_icon(columns=\"icon\", fill_color=color_map)\n",
+    ")\n",
+    "\n",
+    "\n",
+    "# Generate the raw HTML from the table\n",
+    "html_output = gt_table.as_raw_html()\n",
+    "\n",
+    "# Save it to an HTML file\n",
+    "with open(\n",
+    "    \"../../data/osv/processed/osv_security_trends.html\", \"w\", encoding=\"utf-8\"\n",
+    ") as f:\n",
+    "    f.write(html_output)\n",
+    "\n",
+    "# Display the table\n",
+    "gt_table"
+   ]
+  }
+ ],
+ "metadata": {
+  "kernelspec": {
+   "display_name": "Python 3 (ipykernel)",
+   "language": "python",
+   "name": "python3"
+  },
+  "language_info": {
+   "name": "plaintext"
+  }
+ },
+ "nbformat": 4,
+ "nbformat_minor": 2
+}
@@ -0,0 +1,91 @@
+import requests
+import zipfile
+import os
+from pathlib import Path
+import logging
+
+# Set up basic logging
+logging.basicConfig(level=logging.INFO, format="%(levelname)s: %(message)s")
+
+
+def create_directory(path: str) -> None:
+    """
+    Create a directory if it doesn't exist.
+    """
+    p = Path(path)
+    p.mkdir(parents=True, exist_ok=True)
+    logging.info(f"Directory ensured: {p}")
+
+
+def download_file(url: str, local_path: str) -> None:
+    """
+    Download a file from the specified URL to a local path.
+    """
+    headers = {
+        "User-Agent": "TypeError/vuln-data-science (https://github.com/TypeError/vuln-data-science)"
+    }
+    with requests.get(url, stream=True, headers=headers) as response:
+        response.raise_for_status()
+        with open(local_path, "wb") as f:
+            for chunk in response.iter_content(chunk_size=8192):
+                if chunk:
+                    f.write(chunk)
+    logging.info(f"Downloaded: {local_path}")
+
+
+def extract_zip(zip_path: str, extract_to: str) -> None:
+    """
+    Extract a ZIP file to the specified directory and remove the ZIP file.
+    """
+    try:
+        with zipfile.ZipFile(zip_path, "r") as zip_ref:
+            zip_ref.extractall(extract_to)
+        os.remove(zip_path)
+        logging.info(f"Extracted to: {extract_to} and removed ZIP file.")
+    except zipfile.BadZipFile as e:
+        logging.error(f"Bad ZIP file {zip_path}: {e}")
+        raise
+
+
+def download_and_extract_osv(ecosystem: str, base_dir: str = "./data") -> None:
+    """
+    Download and extract OSV data for a given ecosystem.
+    """
+    output_dir = Path(base_dir) / ecosystem
+    create_directory(output_dir)
+
+    url = f"https://osv-vulnerabilities.storage.googleapis.com/{ecosystem}/all.zip"
+    local_zip = output_dir / "all.zip"
+
+    download_file(url, str(local_zip))
+    extract_zip(str(local_zip), str(output_dir))
+
+
+if __name__ == "__main__":
+    base_data_dir = "./data/osv/raw"
+    ecosystems = [
+        "CRAN",  # R packages
+        "crates.io",  # Rust packages
+        "Go",  # Go modules
+        "Hackage",  # Haskell packages
+        "Hex",  # Elixir/Erlang packages
+        "Maven",  # Java packages
+        "npm",  # JavaScript/Node.js packages
+        "NuGet",  # .NET packages
+        "Packagist",  # PHP packages
+        "Pub",  # Dart packages
+        "PyPI",  # Python packages
+        "RubyGems",  # Ruby packages
+    ]
+
+    create_directory(base_data_dir)
+
+    for ecosystem in ecosystems:
+        try:
+            download_and_extract_osv(ecosystem, base_data_dir)
+        except requests.exceptions.RequestException as e:
+            logging.error(f"Error downloading {ecosystem}: {e}")
+        except zipfile.BadZipFile as e:
+            logging.error(f"Error extracting {ecosystem}: {e}")
+        except Exception as e:
+            logging.error(f"Unexpected error for {ecosystem}: {e}")