Supply Chain

Feeds to Scour
SubscribedAll
Scoured 54 posts in 22.0 ms

Software supply chain attacks: check your dependencies

Β πŸ“ŠDependency Graphs Β Content type: Blog
ncsc.gov.ukΒ·

Meet Hades: The malware that lies to AI security agents

Β πŸ›‘Cybersecurity Β Content type: News
infoworld.comΒ·Β·Hacker News

OWASP Dependency-Track 5.0 Is Now Generally Available

Β πŸ“ŠDependency Graphs Β Content type: Blog
owasp.orgΒ·Β·Hacker News

Making the OWASP top ten in the vibe code eraβ€‹β€‹β€‹β€‹β€Œο»Ώβ€ο»Ώβ€‹β€β€‹β€β€Œβ€ο»Ώο»Ώβ€Œο»Ώβ€‹β€β€Œβ€β€β€Œβ€Œβ€β€Œο»Ώβ€Œβ€β€β€Œβ€Œβ€ο»Ώβ€β€‹β€β€‹β€β€‹ο»Ώβ€β€β€‹β€β€‹β€β€Œο»Ώβ€‹ο»Ώβ€Œβ€β€‹β€Œβ€Œβ€ο»Ώβ€β€Œβ€β€β€Œβ€Œο»Ώβ€Œβ€‹β€Œο»Ώβ€β€Œβ€‹β€ο»Ώβ€β€Œβ€β€β€Œβ€Œβ€ο»Ώο»Ώβ€‹β€β€‹β€β€‹β€ο»Ώβ€‹β€‹β€β€‹β€β€Œβ€β€β€‹β€Œο»Ώβ€‹β€β€Œβ€β€Œβ€Œβ€Œβ€β€Œβ€β€‹β€β€‹β€β€‹ο»Ώβ€β€β€‹β€β€‹β€β€Œβ€β€β€‹β€Œο»Ώβ€Œβ€‹β€Œο»Ώβ€Œβ€‹β€Œο»Ώβ€‹β€‹β€Œο»Ώβ€‹ο»Ώβ€‹ο»Ώβ€β€β€‹β€ο»Ώο»Ώβ€‹β€ο»Ώο»Ώβ€Œβ€β€‹ο»Ώβ€Œβ€ο»Ώβ€Œβ€Œ...

Β πŸ”’Type Safety Β Content type: Blog
stackoverflow.blogΒ·

someone actually leaked the Miasma supply chain attack toolkit source code on github

Β πŸ“¦Package Managers
safedep.ioΒ·Β·Hacker News, r/programming

When LLMs Invent Rust Crates: An Empirical Study of Hallucination Patterns and Mitigation

Β πŸ¦€Rust Verification Β Content type: Academic
arxiv.orgΒ·

NPM-Scan v1.1.0: Four New Detectors for June 2026 Supply Chain Attacks

Β πŸ“¦Package Managers Β Content type: Code
github.comΒ·Β·Hacker News

Your Dependency Graph Is a Liability You Haven’t Priced Yet

Β πŸ“ŠDependency Graphs
shippingbytes.comΒ·Β·Hacker News

Updating the taxonomy of failure modes in agentic AI systems: What a year of red teaming taught us

Β πŸ•΅οΈPenetration Testing
microsoft.comΒ·

Finally, a secure Nixpkgs for the enterprise: an update on Determinate Secure Packages

Β πŸ”“Hacking Β Content type: Blog
determinate.systemsΒ·Β·Hacker News, r/NixOS

Shai-Hulud copycat campaign targets Python developers through PyPI typosquatting

Β πŸ“¦Package Managers Β Content type: Blog
about.gitlab.comΒ·

ICYMI: May 2026 @AWS Security

Β πŸ“¦Package Managers Β Content type: Blog
aws.amazon.comΒ·

Week 23 – 2026

Β πŸ›‘Cybersecurity
thisweekin4n6.comΒ·

Risky Bulletin: RubyGems adds dependency cooldowns to counter supply chain attacks

Β πŸ“¦Package Managers
news.risky.bizΒ·

Infosec News Nuggets β€” June 5, 2026

Β πŸ›‘Cybersecurity
aboutdfir.comΒ·

NEWS ROUNDUP – 8th June 2026

Β πŸ”Archive Encryption Β Content type: News
digitalforensicsmagazine.comΒ·

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Β πŸ“¦Package Managers Β Content type: News
arstechnica.comΒ·Β·Lobsters, Hacker News

GitHub disables Microsoft repos pushing password-stealing malware

Β πŸ“¦Package Managers Β Content type: News
bleepingcomputer.comΒ·Β·Hacker News

Spring is 23 years old. AI just made it a security emergency.

Β πŸ”“Hacking
thenewstack.ioΒ·

cra-norm-engine/crane: CRA compliance management tool β€” Conformity by design

Β πŸ“‹records management Β Content type: Code
github.comΒ·Β·Hacker News

No more posts from matmat's subscribed feeds.

Scour all 25255 feedsLearn more about Feeds

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help