Supply Chain Security

Feeds to Scour
SubscribedAll
Scoured 49 posts in 14.0 ms

Signing Container Images with Cosign

 🔒Security  Content type: Blog
dev.to··DEV

cra-norm-engine/crane: CRA compliance management tool — Conformity by design

 🛡Vulnerability Management  Content type: Code
github.com··Hacker News

Announcing stdx, Rust's extended library: simplicity, performance and supply chain security for everyone

 🛡️Error Handling
kerkour.com··Hacker News, r/rust

OWASP Dependency-Track 5.0 Is Now Generally Available

 📋SBOM  Content type: Blog
owasp.org··Hacker News

Pythagora-io/gpt-pilot Compromised on GitHub - Shai-Hulud Credential Stealer Blocked by Python Linter

 🔒Security  Content type: Blog
stepsecurity.io··Hacker News

A cross-platform system tray app and CLI for Kubernetes port forwarding

 DevOps
kftray.app··Hacker News

Trivy vs Grype vs Snyk: Container Vulnerability Scanners Shootout

 🔒Security  Content type: Blog
dev.to··DEV

Config Files That Run Code: Supply Chain Security Blindspot

 ⌨️Text Editors
safedep.io··Hacker News

Finally, a secure Nixpkgs for the enterprise: an update on Determinate Secure Packages

 🔒Security  Content type: Blog
determinate.systems··Hacker News, r/NixOS

NPM-Scan v1.1.0: Four New Detectors for June 2026 Supply Chain Attacks

 📦Dependency Confusion  Content type: Code
github.com··Hacker News

OpenBSD under QEMU

 🛡Vulnerability Management
discoverbsd.com·

Blog - We have to change the rules of security

 🔒Security  Content type: Blog
opensourcesecurity.io··Lobsters, Hacker News

End-to-End GitHub Security Hardening Guide for Organizations

 🆓Free Services  Content type: Blog
dev.to··DEV

The Maintainer Trap: What the jqwik Incident Reveals About Trusting Your Dependencies

 🔒Security  Content type: Blog
dev.to··DEV

Introducing GitLab Orbit

 🌳Git  Content type: Blog
about.gitlab.com··Hacker News

Meet Hades: The malware that lies to AI security agents

 🔒Security  Content type: News
infoworld.com··Hacker News

Docker Security Dispatch — Issue 2: From JCON to Zurich 🏔️

 🔒Security  Content type: Blog
dev.to··DEV

shcherbak-ai/licenseal: Fast cross-ecosystem dependency license compatibility checker + Claude Code review skill

 👁Code Review  Content type: Code
github.com··Hacker News

Miasma worms its way onto GitHub as attack kit goes open source

 🔒Security  Content type: News
theregister.com··Hacker News

Road To KiwiEngine #9: Why I Built Juice Instead of Chasing Another CSS Framework

 📐Design Systems  Content type: Reference
npmjs.com··DEV

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help