|
You are here |
github.blog | ||
| | | | |
openssf.org
|
|
| | | | | [AI summary] A backdoor vulnerability (CVE-2024-3094) was discovered in the xz package, allowing potential remote system compromise through compromised software supply chain practices. | |
| | | | |
securitylab.github.com
|
|
| | | | | In this article, well discuss sometimes less obvious attack vector whose code GitHub Actions are running. | |
| | | | |
semgrep.dev
|
|
| | | | | "Coding vibes great, security vibes... kinda bad." - AppSec teams watching everyone use Cursor right now | |
| | | | |
alarmingdevelopment.org
|
|
| | | My previous post lamented the Great Software Stagnation. We could blame technology lock-in effects (the QWERTY syndrome). We could also blame civilization-wide decadence: the Great Stagnation that ... | ||