Learn how to automate your Git workflow and environment variables into a single, error-proof command that handles the boring ...

Supply chain attacks feel like they're becoming more and more common.

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

ShellGPT makes the terminal user-friendly, saving time by generating commands, automating scripts, and guiding me through tasks.

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

Chainguard is racing to fix trust in AI-built software - here's how ...