Outer Web | Explore

Explore >> Select a destination

You are here		caremad.io Why Package Signing is not the Holy Grail · caremad
\|	\|	cd.foundation New Supply Chain Security Features in Tekton - CD Foundation	14.0 parsecs away Travel
\|	\|	Four new features for supply chain security in Tekton: - Robust provenance - Sigstore integration - Trusted resources - Tekton Catalog now available on Artifact Hub	14.0 parsecs away Travel
\|	\|	openssf.org xz Backdoor CVE-2024-3094 - Open Source Security Foundation	14.8 parsecs away Travel
\|	\|		14.8 parsecs away Travel
\|	\|	www.sonatype.com CVE-2024-3094 The targeted backdoor supply chain attack against XZ and liblzma	14.6 parsecs away Travel
\|	\|	Learn about a new, targeted backdoor supply chain attack against the popular XZ compression utility seen in many Linux distributions such as fedora and debian. Understand its impact, potential risks and what you can do about it.	14.6 parsecs away Travel
\|	\|	srcincite.io Old School Pwning with New School Tricks :: Vanilla Forums domGetImages getimagesize Unserialize Remote Code Execution Vulnerability	39.1 parsecs away Travel
\|		Since I have been working on bug bounties for a while, I decided to finally take the dive into some vendor specific bounties recently. Some of these are on H...	39.1 parsecs away Travel