An AI-assisted campaign is spreading more than 300 poisoned packages for diverse assets ranging from developer tools to game ...
GhostClaw, a macOS infostealer, is spreading through GitHub repositories and developer tools, and it works because routine ...
Popular PHP repositories on GitHub help developers understand real project structure and coding practices.Frameworks, tools, ...
Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor ...
Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...
Chainguard is racing to fix trust in AI-built software - here's how ...
Crypto scammers are exploiting the rising visibility of OpenClaw to target developers through a coordinated phishing campaign ...
New release integrates automated security scanning, AI-powered remediation, and GitHub-native workflows for enterprise ...
OX Security exposes a GitHub phishing campaign targeting OpenClaw developers with fake $CLAW airdrops and a cloned site built ...
The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.
Learn how to detect compromise, assess your exposure to the LiteLLM supply chain attack, and use GitGuardian to orchestrate ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results