What GitLab sets out to achieve with the new open source tool — named Package Hunter — is the detection of malicious code that would execute within an application’s dependencies.