DEV Community

# vulnerabilityinsights

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
280+ Leaky Skills: How OpenClaw & ClawHub Are Exposing API Keys and PII
snyk_sec profile
SnykSec for Snyk

280+ Leaky Skills: How OpenClaw & ClawHub Are Exposing API Keys and PII

#ai #applicationsecurity #vulnerabilityinsights
4
Comments
7 min read
ServiceNow's Virtual Agent Vulnerability Shows Why AI Security Needs Traditional AppSec Foundations
snyk_sec profile
SnykSec for Snyk

ServiceNow's Virtual Agent Vulnerability Shows Why AI Security Needs Traditional AppSec Foundations

#securitylabs #vulnerabilityinsights #cicd #secrets
Comments
6 min read
SHA1-Hulud, npm supply chain incident
snyk_sec profile

SHA1-Hulud, npm supply chain incident

#supplychainsecurity #vulnerabilityinsights
Comments
3 min read
Malicious MCP Server on npm postmark-mcp Harvests Emails
snyk_sec profile

Malicious MCP Server on npm postmark-mcp Harvests Emails

#ai #opensourcesecurity #vulnerabilityinsights
1
Comments
10 min read
When "Private" Isn’t: The Security Risks of GPT Chats Leaking to Search Engines
snyk_sec profile

When "Private" Isn’t: The Security Risks of GPT Chats Leaking to Search Engines

#ai #engineering #vulnerabilityinsights
1
Comments
3 min read
Reconstructing the TJ Actions Changed Files GitHub Actions Compromise
snyk_sec profile

Reconstructing the TJ Actions Changed Files GitHub Actions Compromise

#vulnerabilityinsights
1
Comments
10 min read
CVE-2025-29927 Authorization Bypass in Next.js Middleware
snyk_sec profile

CVE-2025-29927 Authorization Bypass in Next.js Middleware

#vulnerabilityinsights
3
Comments
3 min read
Suspicious Maintainer Unveils Threads of npm Supply Chain Attack
snyk_sec profile

Suspicious Maintainer Unveils Threads of npm Supply Chain Attack

#engineering #vulnerabilityinsights #javascript #node
2
Comments
8 min read
Buildkit GRPC SecurityMode privilege check: Build-time container breakout (CVE-2024-23653)
snyk_sec profile

Buildkit GRPC SecurityMode privilege check: Build-time container breakout (CVE-2024-23653)

#containersecurity #vulnerabilityinsights #kubernetes #docker
5
Comments
5 min read
Leaky Vessels deep dive: Escaping from Docker one syscall at a time
snyk_sec profile

Leaky Vessels deep dive: Escaping from Docker one syscall at a time

#vulnerabilityinsights #ccpp #docker #kubernetes
4
Comments
45 min read
Vulnerability: runc process.cwd and leaked fds container breakout (CVE-2024-21626)
snyk_sec profile

Vulnerability: runc process.cwd and leaked fds container breakout (CVE-2024-21626)

#containersecurity #vulnerabilityinsights #kubernetes #docker
4
Comments
5 min read
Buildkit mount cache race: Build-time race condition container breakout (CVE-2024-23651)
snyk_sec profile

Buildkit mount cache race: Build-time race condition container breakout (CVE-2024-23651)

#containersecurity #vulnerabilityinsights #kubernetes #docker
1
Comments
5 min read
How to update cURL
snyk_sec profile

How to update cURL

#devsecops #engineering #opensourcesecurity #vulnerabilityinsights
8
Comments
8 min read
How to find and fix Critical WebP zero-day vulnerability CVE-2023-4863
snyk_sec profile

How to find and fix Critical WebP zero-day vulnerability CVE-2023-4863

#vulnerabilityinsights
2
Comments
6 min read
Critical WebP 0-day security CVE-2023-4863 impacts wider software ecosystem
snyk_sec profile

Critical WebP 0-day security CVE-2023-4863 impacts wider software ecosystem

#containersecurity #vulnerabilityinsights #opensourcesecurity #docker
1
Comments
9 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.