Supply Chain

🏭 Supply Chain

Software Bill of Materials, Dependency Confusion, Code Signing, Build Security

Feeds to Scour
SubscribedAll
Scoured 652 posts in 7.3 ms

Miasma Worm Compromises 73 Microsoft GitHub Repositories

 🦠Malware Analysis
securityaffairs.com·

Software supply chain attacks: check your dependencies

 📦Container Security  Content type: Blog
ncsc.gov.uk·

Miasma Worm Hits Microsoft Again: Azure Functions Action and 72 Other Repositories Disabled After Supply Chain Attack Targeting AI Coding Agents

 🌍Browser Exploits  Content type: Blog
stepsecurity.io··Hacker News

Vulnerability management is reaching the limits of human scale

 🔒Security  Content type: Blog
sysdig.com·

How Agentic AI Is Redefining DevOps for Self-Healing CI/CD

 🧠AI Security  Content type: Blog
talent500.com·

Infosec News Nuggets — June 10, 2026

 🔒Security
aboutdfir.com·

GitHub disables Microsoft repos pushing password-stealing malware

 🚨Incident Response  Content type: News
bleepingcomputer.com··Hacker News

Securing CI/CD for an open source project: Controlling who runs what

 🐧eBPF Kernels  Content type: Blog
cncf.io·

docs(release): fix sequential patch numbering · openclaw/openclaw@fb9dc86

 🌍Browser Exploits  Content type: Code
github.com·

Massive PyPI Supply Chain Attack Harvests Cloud Credentials via Python Startup Hooks

 📦Container Security
orca.security·

You can fork a package, but can you own it?

 🔒Security
event-driven.io·

Shai-Hulud Descends to Hades: Miasma Worm Campaign Spreads with New PyPI Wave

 🦠Malware Analysis  Content type: Blog
socket.dev·

Security Flaw in Claude Code Illustrates the Risk of AI in Developer Workflows

 🧠AI Security
devops.com·

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

 🌍Browser Exploits
thehackernews.com·

AutoPipelineAI: Context-Aware CI/CD Pipeline Generation from Natural Language

 🧬Program Synthesis  Content type: Academic
arxiv.org·

SAP Security Patch Day June 2026: Critical CVE-2026-44748 SAML Flaw Could Allow Full Authentication Bypass

 🔒Security  Content type: Blog
socradar.io·

New Shai-Hulud Miasma Wave Hits Hundreds of npm Packages

 🌍Browser Exploits
malware.news·

Malware Insights: Miasma Campaign

 🦠Malware Analysis
cookie.engineer··Hacker News

The Worm in the Supply Chain: How Defender for Endpoint and Sentinel for SAP BTP Caught Shai-Hulud

 🦠Malware Analysis
techcommunity.microsoft.com
·

81% of teams ship broken code: Mythos made that inexcusable

 🧠AI Security
techradar.com
·

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help