DEV Community

# supplychainsecurity

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
Improved Dependency Submission for GitHub Actions
jessehouwing profile

Improved Dependency Submission for GitHub Actions

#githubactions #github #supplychainsecurity #security
Comments
3 min read
NPM = Wild Wild West: It's Time to Stop the Madness
ucefkh profile

NPM = Wild Wild West: It's Time to Stop the Madness

#supplychainsecurity #javascript #opensource #npm
1
Comments
3 min read
SHA1-Hulud, npm supply chain incident
snyk_sec profile

SHA1-Hulud, npm supply chain incident

#supplychainsecurity #vulnerabilityinsights
Comments
3 min read
Embedded Malicious Code in tinycolor and ngx-bootstrap releases on npm
snyk_sec profile

Embedded Malicious Code in tinycolor and ngx-bootstrap releases on npm

#supplychainsecurity
Comments
6 min read
Using SBOMs to detect possible Dependency Confusion
protsenko profile

Using SBOMs to detect possible Dependency Confusion

#cybersecurity #supplychainsecurity #dependencyconfusion #webdev
Comments 1
4 min read
Behind the Code: A Simple Look at the Software Supply Chain
savinda_premachandra profile

Behind the Code: A Simple Look at the Software Supply Chain

#beginners #supplychainsecurity #devops #cybersecurity
Comments
2 min read
Ultralytics AI Pwn Request Supply Chain Attack
snyk_sec profile

Ultralytics AI Pwn Request Supply Chain Attack

#codesecurity #devsecops #opensourcesecurity #supplychainsecurity
Comments
7 min read
The mysterious supply chain concern of string-width-cjs npm package
snyk_sec profile

The mysterious supply chain concern of string-width-cjs npm package

#opensourcesecurity #supplychainsecurity #javascript #node
Comments
7 min read
What You See is What You Get - Building a Verifiable Enclave Image
richardfan1126 profile

What You See is What You Get - Building a Verifiable Enclave Image

#aws #nitroenclaves #sigstore #supplychainsecurity
Comments
7 min read
The good, the bad and the ugly of the XZ vulnerability (CVE 2024-3094)
craigmcl profile

The good, the bad and the ugly of the XZ vulnerability (CVE 2024-3094)

#security #supplychainsecurity #xz #cybersecurity
22
Comments
6 min read
Protect the repository hosting your GitHub Action
jessehouwing profile

Protect the repository hosting your GitHub Action

#githubactions #github #security #supplychainsecurity
6
Comments
7 min read
How to strengthen security in your CI/CD pipeline
snyk_sec profile

How to strengthen security in your CI/CD pipeline

#supplychainsecurity #applicationsecurity #devsecops #cicd
3
Comments
8 min read
CodeSecDays conference and more complete security coverage with GitGuardian
snyk_sec profile

CodeSecDays conference and more complete security coverage with GitGuardian

#supplychainsecurity #cicd
4
Comments
4 min read
Securing the Software Supply Chain: The Struggle Is (Still) Real  
brianna_blacet_a60aae8af7 profile

Securing the Software Supply Chain: The Struggle Is (Still) Real  

#opensource #sbom #supplychainsecurity
1
Comments
6 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.