feat: implement typosquatting detection for package names

Adds a new security analysis feature to detect potential typosquatting in package names. Compares the package name against a list of popular packages using the Jaro-Winkler similarity algorithm. Packages exceeding a configurable threshold are flagged. Includes a default popular package list and an option for a custom list via configuration.

Signed-off-by: Amine <[email protected]>

Author: AmineRaouane

src/macaron/malware_analyzer/pypi_heuristics/metadata/typosquatting_presence.py

@@ -27,43 +27,43 @@ def __init__(self) -> None:
         self.scaling = 0.15
         self.keyboard = 0.8
         self.keyboard_layout = {
-            "1": (-1, 0),
-            "2": (-1, 1),
-            "3": (-1, 2),
-            "4": (-1, 3),
-            "5": (-1, 4),
-            "6": (-1, 5),
-            "7": (-1, 6),
-            "8": (-1, 7),
-            "9": (-1, 8),
-            "0": (-1, 9),
-            "-": (-1, 10),
-            "q": (0, 0),
-            "w": (0, 1),
-            "e": (0, 2),
-            "r": (0, 3),
-            "t": (0, 4),
-            "y": (0, 5),
-            "u": (0, 6),
-            "i": (0, 7),
-            "o": (0, 8),
-            "p": (0, 9),
-            "a": (1, 0),
-            "s": (1, 1),
-            "d": (1, 2),
-            "f": (1, 3),
-            "g": (1, 4),
-            "h": (1, 5),
-            "j": (1, 6),
-            "k": (1, 7),
-            "l": (1, 8),
-            "z": (2, 0),
-            "x": (2, 1),
-            "c": (2, 2),
-            "v": (2, 3),
-            "b": (2, 4),
-            "n": (2, 5),
-            "m": (2, 6),
+            "1": (0, 0),
+            "2": (0, 1),
+            "3": (0, 2),
+            "4": (0, 3),
+            "5": (0, 4),
+            "6": (0, 5),
+            "7": (0, 6),
+            "8": (0, 7),
+            "9": (0, 8),
+            "0": (0, 9),
+            "-": (0, 10),
+            "q": (1, 0),
+            "w": (1, 1),
+            "e": (1, 2),
+            "r": (1, 3),
+            "t": (1, 4),
+            "y": (1, 5),
+            "u": (1, 6),
+            "i": (1, 7),
+            "o": (1, 8),
+            "p": (1, 9),
+            "a": (2, 0),
+            "s": (2, 1),
+            "d": (2, 2),
+            "f": (2, 3),
+            "g": (2, 4),
+            "h": (2, 5),
+            "j": (2, 6),
+            "k": (2, 7),
+            "l": (2, 8),
+            "z": (3, 0),
+            "x": (3, 1),
+            "c": (3, 2),
+            "v": (3, 3),
+            "b": (3, 4),
+            "n": (3, 5),
+            "m": (3, 6),
         }
 
         if global_config.popular_packages_path is not None: