pull down to refresh

NPM security: preventing supply chain attacks | Snyk (2022)snyk.io/blog/npm-security-preventing-supply-chain-attacks/
517 sats \ 20 comments \ @ek 9 Sep 2025 security
related
Stacker News Changelog
4944 sats \ 10 comments \ @sn 8 Oct 2022 bitcoin
Nearly 20% of Docker Hub Repositories Spread Malware & Phishing Scamsjfrog.com/blog/attacks-on-docker-with-millions-of-malicious-repositories-spread-malware-and-phishing-scams/
164 sats \ 1 comment \ @nym 30 Apr 2024 security
Tinycolor npm Package Compromised in (another) Supply Chain Attacksocket.dev/blog/tinycolor-supply-chain-attack-affects-40-packages
1053 sats \ 3 comments \ @aljaz 16 Sep 2025 security
NPM Supply-Chain Attack - check your code for vulnerabilitiesjdstaerk.substack.com/p/we-just-found-malicious-code-in-the
150 sats \ 0 comments \ @nkmg1c_ventures 8 Sep 2025 devs
NPM hack was mentioned multiple times on SN before yesterday
145 sats \ 4 comments \ @h6j5dhc567g 9 Sep 2025 bitdevs
GitHub suffers a cascading supply chain attack compromising CI/CD secretswww.infoworld.com/article/3849245/github-suffers-a-cascading-supply-chain-attack-compromising-ci-cd-secrets.html
389 sats \ 2 comments \ @ch0k1 21 Mar 2025 security
'Sha1-Hulud' npm malware is back
377 sats \ 0 comments \ @anon 28 Nov 2025 lightning
Supply chain attacks are exploiting our assumptions - Trail of Bitsblog.trailofbits.com/2025/09/24/supply-chain-attacks-are-exploiting-our-assumptions/
150 sats \ 0 comments \ @Scoresby 24 Sep 2025 devs
How to Verify the Impact of the Recent NPM Attack on My Wallets?
430 sats \ 29 comments \ @spiderman 11 Sep 2025 bitcoin
Compromised npm package silently installs OpenClaw on developer machineswww.csoonline.com/article/4135449/compromised-npm-package-silently-installs-openclaw-on-developer-machines.html
422 sats \ 4 comments \ @winteryeti 24 Feb AI
Coinbase was primary target of recent GitHub Actions breacheswww.bleepingcomputer.com/news/security/coinbase-was-primary-target-of-recent-github-actions-breaches/
177 sats \ 0 comments \ @ch0k1 23 Mar 2025 news
Bitcoin's Perilous Journey
184 sats \ 3 comments \ @4 14 Nov 2023 bitcoin
GrapheneOS: The Purpose, The Strategy, and The Why [Article]
125.8k sats \ 26 comments \ @final 29 Sep 2024 tech
Self Propagating NPM Malware Compromises over 40 Packageswww.stepsecurity.io/blog/ctrl-tinycolor-and-40-npm-packages-compromised
130 sats \ 0 comments \ @hn 16 Sep 2025 tech
The Quiet Fork
906 sats \ 0 comments \ @GreaterthanFiction 27 Sep 2025 BooksAndArticles
Apple - love it or hate it? 🍏
109.6k sats \ 44 comments \ @davidw 3 Mar 2024 privacy
This Day on SN: April 8
514 sats \ 0 comments \ @sn 8 Apr 2025 meta
Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokensthehackernews.com/2026/02/malicious-npm-packages-harvest-crypto.html
30 sats \ 0 comments \ @winteryeti 25 Feb tech
Knots awaiting approval to enter Debian package manager distributionx.com/leo_haf/status/1975482945092919644
188 sats \ 3 comments \ @Scoresby 7 Oct 2025 bitcoin
Attackers are mapping your attack surface—are you?www.bleepingcomputer.com/news/security/attackers-are-mapping-your-attack-surface-are-you/
215 sats \ 0 comments \ @ch0k1 31 May 2025 security
GitHub Developers Hit in Complex Supply Chain Cyberattackwww.darkreading.com/application-security/github-developers-hit-in-complex-supply-chain-cyberattack
125 sats \ 0 comments \ @ch0k1 26 Mar 2024 devs