Supply Chain Attacks

Feeds to Scour
SubscribedAll
Scoured 71 posts in 22.9 ms

Shai-Hulud copycat campaign targets Python developers through PyPI typosquatting

 🔓Open Source Software  Content type: Blog
about.gitlab.com·

Shai-Hulud Descends to Hades: Miasma Worm Campaign Spreads with New PyPI Wave

 🌱Bootstrapping  Content type: Blog
socket.dev·

Glone: A CLI to back up all your GitHub repositories

 🔓Open Source Software  Content type: Code
github.com··Hacker News
Less-relevant results

Slixmpp 1.16.0 – XMPP/Jabber Library for Python – SleekXMPP

 🔌API Design Theory  Content type: Blog
blog.mathieui.net··Hacker News

GitHub nukes 70+ Microsoft repos, breaks CI/CD pipelines, following suspected worm infections

 🔧Developer tools  Content type: News
theregister.com··Hacker News

Patching fast and slow: Ruby devs delay to defend against supply chain attack

 🔍Quickwit
infoworld.com·

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

 🔄GitHub Actions  Content type: News
bleepingcomputer.com·

someone actually leaked the Miasma supply chain attack toolkit source code on github

 🔓Open Source Software
safedep.io··Hacker News, r/programming

Microsoft pulled 73 GitHub repos after malware attack — but still won’t say who’s compromised

 💻Coding Agents
thenewstack.io·

Pyodide 314.0: Python packages can now publish WebAssembly wheels to PyPI

 📦WASM  Content type: Blog
blog.pyodide.org··Hacker News

Compromised Rust crate onering performs code exfiltration

 📦Cargo  Content type: Blog
aikido.dev··r/rust

Apache Burr: Build reliable AI agents and applications

 🔁Finite Automata
burr.apache.org··Hacker News

NPM-Scan v1.1.0: Four New Detectors for June 2026 Supply Chain Attacks

 🔍Quickwit  Content type: Code
github.com··Hacker News

MOLOT System Card: Malicious Operational Logic Observation Transformer

 🛡️AI Security  Content type: Academic
arxiv.org·

Miasma NPM Supply Chain Attack: Self-Spreading Worm via Phantom Gyp

 🤖AI  Content type: Blog
stepsecurity.io··Hacker News

Identity Access is not just for technical people

 🔓Open Source Software
pathros.cc··Hacker News

Mini Shai-Hulud, Miasma, and Hades Worms Target Bioinformatics and MCP Developers via Malicious PyPI Wheels

 🤖Agent Protocols  Content type: Blog
socket.dev··Hacker News

The ‘Miasma’ worm source code briefly leaked on GitHub

 🎓Advanced content  Content type: News
bleepingcomputer.com·

TorchKM: A GPU-Oriented Library for Kernel Learning and Model Selection

 🕯️Candle ML  Content type: Academic
arxiv.org·

Are you standard.site?

 🦋Bluesky
dbushell.com·

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help