📊 Dependency Graphs - matmat · Scour

Catching the LiteLLM and Telnyx supply chain zero-days via semantic analysis 🔗Topological Sorting

point-wild.github.io·4d·Hacker News·

Securing the open source supply chain across GitHub 🔗Supply Chain

github.blog·1d·Hacker News·

The TeamPCP attacks are a warning: Your CI/CD pipeline is the new front line 🛡️CLI Security

thenewstack.io·9h·

[Dev Weekly #105] Claude code source code leaked | Supply Chain Chaos | Google Gemma 4 is announced | Bun’s 5x Speed Boost 📜Proof Carrying Code

blog.codeminer42.com·8h·

Elastic releases detections for the Axios supply chain compromise 🔍eBPF

elastic.co·2d·

ngoineau/ootils-core: The first supply chain decision engine designed for the age of AI agents — graph-based, deterministic, explainable, API-first, open source 🔗Supply Chain

github.com·4d·Hacker News·

Mitigating the Axios npm supply chain compromise ❄️Nix Adoption

microsoft.com·1d·

TeamPCP Supply Chain Campaign: Update 005 🔗Supply Chain

isc.sans.edu·1d·

Telnyx, LiteLLM and Axios: the supply chain crisis 🌳Archive Merkle Trees

martinalderson.com·3d·Hacker News·

Supply chain blast: Top npm package backdoored to drop dirty RAT on dev machines ❄️Nix Flakes

theregister.com·2d·Hacker News·

TeamPCP’s Supply Chain Attack Spree Continues 🎫Kerberos Attacks

decipher.sc·6d·

What We Learned: Axios NPM Supply Chain Compromise Emergency Briefing 🎫Kerberos Attacks

sans.org·2d·

"Elementary, My Dear Watson." Detecting Malicious Skills via Neuro-Symbolic Reasoning across Heterogeneous Artifacts 🎯Threat Hunting

arxiv.org·2d·

Best practices for improving supply chain visibility in road freight (2023) 🔗Supply Chain

sennder.com·3d·Hacker News·

DEW #150 - macOS Endpoint Security Firewall, EDR telemetry updates & Supply Chain Bonanza 📟Terminal Forensics

detectionengineering.net·1d·

Inside the Axios supply chain compromise 🔗Supply Chain

elastic.co·2d·

Vezran/ghostgap: Supply Chain Firewall — block compromised packages, close the Ghost Gap, cure infections. Zero dependencies. ❄️Nixpkgs

github.com·6d·Hacker News·

TeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Compromise, TeamPCP Runs Dual Ransomware Operations, and AstraZeneca Data Released,... 🔐Certificate Analysis

isc.sans.edu·3d·

Axios NPM Supply Chain Compromise: Malicious Packages Deliver Remote Access Trojan 🎫Kerberos Attacks

sans.org·3d·

TeamPCP Supply Chain Campaign: Update 003 - Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th) 🔗Supply Chain

isc.sans.edu·5d·

Loading more...