> For the complete documentation index, see [llms.txt](https://help.aikido.dev/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://help.aikido.dev/changelog/q2-2026/new-protect-company-devices-from-supply-chain-attacks.md).

# New - Protect Company Devices From Supply Chain Attacks 🚀

Device Protection is an agent that covers the full install surface of your developers and others their devices: malware blocking, extension governance, group-based policies, and a request-and-approval workflow. Designed for security while keeping developers productive.

<figure><img src="/files/4Q8RLZjJDfpVluFAq2rS" alt=""><figcaption></figcaption></figure>

### **What's included**

**Real-time malware blocking powered by Aikido Intel, across npm, PyPI, Maven, NuGet...**

**Extension governance for VS Code, OpenVSX, Chrome, and skills.sh**

<figure><img src="/files/CgQ2wS6BfVXLsOzoejiw" alt="" width="563"><figcaption></figcaption></figure>

**Request and approval workflow: blocked installs trigger a one-click exception request reviewed inside Aikido**

<figure><img src="/files/2olknUtiMAxiI795hNuo" alt="" width="563"><figcaption></figcaption></figure>

**Group-based policies: set different rules per team**

<figure><img src="/files/LjjSl2lkZNqDsXDTepP4" alt="" width="563"><figcaption></figcaption></figure>

**Continuous device inventory: always-current view of every package and extension per device**

<figure><img src="/files/QHepxWYcUlIhZDRwoBmL" alt=""><figcaption></figcaption></figure>

### Developer Experience

The agent runs silently in the background. For the vast majority of installs, nothing happens and packages install as normal. Developers only see a notification when something is blocked or held for approval:

**Malware block:** A desktop notification shows the package name and flags it as malicious.

<figure><img src="/files/xyPxb9Ab4Cya7JFZ4zGp" alt="" width="352"><figcaption></figcaption></figure>

<figure><img src="/files/U5gxkjVVX6NDXuVhlUAv" alt="" width="375"><figcaption></figcaption></figure>

**Policy block:** A notification explains the package is restricted by your organization's policy. Developers can open the dashboard for details, but only an admin can change the policy.

<figure><img src="/files/Jl7vsnsjGIYha9wCMEkG" alt="" width="375"><figcaption></figcaption></figure>

**Approval required:** If your policy requires approval for new packages, the install is paused and a request goes to the admin Inbox.

\
→ [More information](/aikido-device-protection/endpoint-protection.md)\ <br>


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://help.aikido.dev/changelog/q2-2026/new-protect-company-devices-from-supply-chain-attacks.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.
