Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
301.
▲
Mini Shai-Hulud, Miasma, and Hades Worms Target Bioinformati
(socket.dev)
2 points
rbanffy
10 hours ago
discuss
302.
▲
New supply chain attack on 34 packages, 100+ versions on NPM, PyPI and crates.io
(socket.dev)
2 points
aghuang
19 days ago
discuss
303.
▲
TrapDoor supply chain attack hits PyPI, NPM, and crates.io
(socket.dev)
2 points
rvz
20 days ago
discuss
304.
▲
Mini Shai-Hulud has crossed from NPM into PyPI
(bsky.app)
2 points
anglesideangle
a month ago
discuss
305.
▲
SAP Cap NPM Packages Hit by Supply Chain Attack
(socket.dev)
2 points
salkahfi
a month ago
discuss
306.
▲
North Korea's Contagious Interview Campaign Spreads Across 5 Ecosystems
(socket.dev)
2 points
pier25
2 months ago
discuss
307.
▲
Supply Chain Attack on Axios Pulls Malicious Dependency from NPM
(socket.dev)
2 points
dsr12
2 months ago
discuss
308.
▲
Malicious NPM Packages Use Pastebin Steganography to Deploy Credential Stealer
(socket.dev)
2 points
feross
4 months ago
discuss
309.
▲
Socket brings supply chain security to skills.sh
(socket.dev)
2 points
ryoidong
4 months ago
discuss
310.
▲
AI Agent Lands PRs in Major OSS Projects, Targets Maintainers via Cold Outreach
(socket.dev)
2 points
choult
4 months ago
discuss
311.
▲
AI Agent Lands PRs in Major OSS Projects
(socket.dev)
2 points
junon
4 months ago
discuss
312.
▲
Rust RFC Proposes a Security Tab on Crates.io for RustSec Advisories
(socket.dev)
2 points
feross
6 months ago
discuss
313.
▲
Malicious Crate Mimicking 'Finch' Exfiltrates Credentials via a Hidden
(socket.dev)
2 points
feross
6 months ago
discuss
314.
▲
November CVEs Fell 25% YoY, Driven by Slowdowns at Major CNAs
(socket.dev)
2 points
feross
6 months ago
discuss
315.
▲
Scaling Socket from Zero to 10k Organizations
(socket.dev)
2 points
feross
6 months ago
discuss
316.
▲
The GitHub Infrastructure Powering North Korea's Contagious Interview NPM
(socket.dev)
2 points
feross
7 months ago
discuss
317.
▲
Webhook Events for Alert Changes
(socket.dev)
2 points
feross
7 months ago
discuss
318.
▲
Socket Certified Patches: One-Click Fixes for Vulnerable Dependencies
(socket.dev)
2 points
feross
7 months ago
discuss
319.
▲
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
(socket.dev)
2 points
feross
7 months ago
discuss
320.
▲
How Enterprise Security Is Adapting to AI-Accelerated Threats
(socket.dev)
2 points
feross
7 months ago
discuss
321.
▲
The Changelog Podcast: Practical Steps to Stay Safe on NPM
(socket.dev)
2 points
feross
7 months ago
discuss
322.
▲
New CNAPulse Dashboard Tracks CNA Activity and Disclosure Trends
(socket.dev)
2 points
feross
8 months ago
discuss
323.
▲
GitHub Actions Scanning Support
(socket.dev)
2 points
feross
8 months ago
discuss
324.
▲
Malware Scanning for the Hugging Face Ecosystem
(socket.dev)
2 points
emschwartz
8 months ago
discuss
325.
▲
Google's OSV Fix Just Added 500 New Advisories – All Thanks to One Small Policy
(socket.dev)
2 points
feross
8 months ago
discuss
326.
▲
Python 3.14 Released with Template String Literals, Deferred Annotations, and
(socket.dev)
2 points
feross
8 months ago
discuss
327.
▲
Socket Firewall: block malicious packages at install time
(socket.dev)
2 points
bpierre
8 months ago
discuss
328.
▲
Malicious NPM Packages Impersonate Flashbots SDKs, Targeting Ethereum Wallet
(socket.dev)
2 points
feross
9 months ago
discuss
329.
▲
Static vs. Runtime Reachability: Insights from Latio's on the Record Podcast
(socket.dev)
2 points
feross
10 months ago
discuss
330.
▲
Precomputed Reachability Analysis in Socket
(socket.dev)
2 points
feross
10 months ago
discuss
More