| | Axios NPM Package Compromised: Supply Chain Attack Delivers Cross-Platform Rat (snyk.io) |
| 2 points by jruohonen 60 days ago | past | 1 comment |
|
| | A Poisoned Security Scanner Became the Key to Backdooring LiteLLM (snyk.io) |
| 2 points by cdnsteve 66 days ago | past |
|
| | A Poisoned Security Scanner Became the Key to Backdooring LiteLLM (snyk.io) |
| 2 points by taubek 67 days ago | past |
|
| | I Read Cursor's Security Agent Prompts, So You Don't Have To (snyk.io) |
| 2 points by rdegges 73 days ago | past |
|
| | "Clinejection" Turned an AI Bot into a Supply Chain Attack (snyk.io) |
| 1 point by vismit2000 84 days ago | past |
|
| | "Clinejection" Turned an AI Bot into a Supply Chain Attack – Snyk (snyk.io) |
| 1 point by Daviey 85 days ago | past | 1 comment |
|
| | The 89% Problem: LLMs are resurrecting the "dormant majority" of open source (snyk.io) |
| 4 points by epicprogrammer 86 days ago | past | 1 comment |
|
| | Anthropic Just Launched Claude Code Security. That's Great News for the Industry (snyk.io) |
| 3 points by mooreds 3 months ago | past |
|
| | Newlines, Symlinks, and Arbitrary Writes: High-Severity Vulnerabilities in Incus (snyk.io) |
| 2 points by rmcnamara 4 months ago | past |
|
| | SHA1-Hulud, NPM supply chain incident (snyk.io) |
| 3 points by tsenturk 6 months ago | past |
|
| | How Snyk Studio for Qodo Is Closing the AI Security Gap (snyk.io) |
| 1 point by tsenturk 6 months ago | past |
|
| | Retrieval-Augmented Generation with Bob Remeika from Ragie [audio] (snyk.io) |
| 1 point by mooreds 8 months ago | past |
|
| | Weaponizing AI Coding Agents for Malware (Nx Event) (snyk.io) |
| 1 point by mitjam 8 months ago | past | 1 comment |
|
| | Abusing Ubuntu 24.04 features for root privilege escalation (snyk.io) |
| 2 points by todsacerdoti 9 months ago | past |
|
| | NixOS Privilege Escalation –> Root (snyk.io) |
| 2 points by rdegges 10 months ago | past |
|
| | NixOS: Declarative Management, Imperative Privilege Escalation (snyk.io) |
| 5 points by Bogdanp 10 months ago | past |
|
| | Snyk Acquires Invariant Labs (snyk.io) |
| 2 points by od0 11 months ago | past |
|
| | Authentication, Authorization, and the Future of AI Security [audio] (snyk.io) |
| 3 points by mooreds on April 16, 2025 | past |
|
| | In Localhost We Trust (snyk.io) |
| 3 points by rdegges on April 3, 2025 | past |
|
| | Snyk Security Labs Testing Update: Cursor.com AI Code Editor (snyk.io) |
| 6 points by ksbrooksjr on Jan 14, 2025 | past | 1 comment |
|
| | The security concerns of a JavaScript sandbox with the Node.js VM module (snyk.io) |
| 1 point by stefankuehnel on Dec 22, 2024 | past |
|
| | Understanding command injection vulnerabilities in Go (snyk.io) |
| 1 point by makaimc on Nov 15, 2024 | past |
|
| | Abusing Ubuntu 24.04 features for root privilege escalation (snyk.io) |
| 189 points by saltypal on Nov 13, 2024 | past | 77 comments |
|
| | Snyk Acquires Developer-First DAST Provider Probely (snyk.io) |
| 1 point by LilBytes on Nov 13, 2024 | past | 1 comment |
|
| | Lottie Player NPM package compromised (snyk.io) |
| 2 points by cloudripper on Oct 31, 2024 | past |
|
| | Modern Node.js Runtime Features (snyk.io) |
| 2 points by fagnerbrack on June 30, 2024 | past |
|
| | Escaping from Docker one syscall at a time (snyk.io) |
| 4 points by rdegges on Feb 8, 2024 | past |
|
| | Runc process.cwd and leaked fds container breakout (CVE-2024-21626) (snyk.io) |
| 3 points by emilburzo on Feb 1, 2024 | past |
|
| | "Leaky Vessels" Docker Container Breakout Vulnerability (snyk.io) |
| 41 points by rdegges on Jan 31, 2024 | past |
|
| | How to Keep HTTP Connections Alive for 9 Hours (snyk.io) |
| 3 points by rdegges on Oct 24, 2023 | past |
|
|
| More |
