Supply Chain Attacks

Feeds to Scour
SubscribedAll
Scoured 153 posts in 27.3 ms

Pyodide 314.0: Python packages can now publish WebAssembly wheels to PyPI

 📦WASM  Content type: Blog
blog.pyodide.org··Hacker News

Compromised Rust crate onering performs code exfiltration

 📦Cargo  Content type: Blog
aikido.dev··r/rust

Most Package Hacks Get in the Same Way: How I Block Common Entry Points

 💻Coding Agents
producttalk.org
·

Miasma Worm Compromises 73 Microsoft GitHub Repositories

 🔄GitHub Actions
securityaffairs.com·

Patching fast and slow: Ruby devs delay to defend against supply chain attack

 🔍Quickwit
infoworld.com·

'Hades' Attacks on PyPI Put New Spin on Shai-Hulud

 🧮LSH
sh.itjust.works·

Apache Burr: Build reliable AI agents and applications

 🔁Finite Automata
burr.apache.org··Hacker News

Self-replicating Miasma worm hits 73 Microsoft GitHub repositories in supply chain attack

 💻Claude Code  Content type: News
thenextweb.com·

MOLOT System Card: Malicious Operational Logic Observation Transformer

 🛡️AI Security  Content type: Academic
arxiv.org·

Mini Shai-Hulud, Miasma, and Hades Worms Target Bioinformatics and MCP Developers via Malicious PyPI Wheels

 🤖Agent Protocols  Content type: Blog
socket.dev··Hacker News

Update canonical GitHub project links (#3177)

 🔧Developer tools  Content type: Code
github.com·

New Shai-Hulud Miasma Wave Hits Hundreds of npm Packages

 🔄GitHub Actions
malware.news·

Miasma Worm Hits Microsoft Again: Azure Functions Action and 72 Other Repositories Disabled After Supply Chain Attack Targeting AI Coding Agents

 💻Coding Agents  Content type: Blog
stepsecurity.io··Hacker News

IDA Plugin Updates on 2026-06-06

 🔓Open Source Software
williballenthin.com·

Release v1.1.3 · tombi-toml/tombi

 🔄GitHub Actions  Content type: Code
github.com·

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

 🤖AI
thehackernews.com·

TorchKM: A GPU-Oriented Library for Kernel Learning and Model Selection

 🕯️Candle ML  Content type: Academic
arxiv.org·

Minimus Announces General Availability of Supply Chain Protection and minicli

 🔧Developer tools
nextbigfuture.com·

Securing CI/CD for an open source project: Controlling who runs what

 🔓Open Source Software  Content type: Blog
cncf.io·

Microsoft had to shut down 70+ GitHub repos after getting hacked, brings back some

 💻Claude Code
neowin.net·

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help