Claude code just turned me into something of a game developer ...

Aqua Security’s Trivy vulnerability scanner compromise is trickling down ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

TeamPCP strikes again, with almost identical code to LiteLLM.

New AI-powered scanner -- who-touched-my-packages -- detects zero-day malicious packages and credential exfiltration in seconds BOSTON, March 26, 2026 /PRNewswire/ -- Point Wild, a leading global ...

Language package managers like pip, npm, and others pose a high risk during active supply chain attacks. However, OS updates ...

Free cryptographically verified code quality scoring for software procurement. The best software wins. Not the best ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

The cybercrime crew linked to the Trivy supply-chain attack has struck again, this time pushing malicious Telnyx package ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...

The TeamPCP hacking group has been using credentials stolen in the recent OSS campaign to enumerate and compromise AWS ...