Chainguard's new Athena coalition uses AI to fix open-source flaws - before attackers exploit them ...
Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.
ThreatsDay Bulletin covers AI abuse, poisoned packages, phishing, macOS attacks, SD-WAN flaws, scams, and supply-chain ...
Detection and analysis tools for the atomic-lockfile supply-chain attack on the Arch User Repository (AUR). This is a collection of all the scattered resources, especially the ones in the detection ...