Explore >> Select a destination

You are here

 opensource.googleblog.com
Know, Prevent, Fix: A framework for shifting the discussion around vulnerabilities in open source | Google Open Source Blog
| | www.sonatype.com
The hidden threat: Tackling malware in your software supply chain
2.7 parsecs away

Travel
| | Open source malware is on the rise. Learn how to detect threats, comply with federal mandates, and secure your software supply chain with proactive security measures.
| | www.evasec.io
Vulnerabilities in CocoaPods Open the Door to Supply Chain Attacks Against Thousands of iOS and MacOS Applications
3.0 parsecs away

Travel
| | Multiple vulnerabilities affecting the CocoaPods ecosystem, have been discovered, posing a major risk of supply chain attacks.
| | openssf.org
xz Backdoor CVE-2024-3094 - Open Source Security Foundation
2.2 parsecs away

Travel
| | [AI summary] A backdoor vulnerability (CVE-2024-3094) was discovered in the xz package, allowing potential remote system compromise through compromised software supply chain practices.
| | cd.foundation
September 2, 2021 - CD Foundation
11.0 parsecs away

Travel
| [AI summary] The article discusses recent advancements in Jenkins, including support for CloudEvents, hardware interoperability, and the evolution of Blue Ocean UI.