Sign up for our newsletter!
Stay informed on the latest DevOps news

staging-devopsy.kinsta.cloud

Tag: software supply chain risks

AI, security

AI-Generated Code Packages Can Lead to ‘Slopsquatting’ Threat

| | AI code generation, AI hallucinations, Large Language Models, slopsquatting, software supply chain risks
AI hallucinations – the occasional tendency of large language models to respond to prompts with incorrect, inaccurate or made-up answers – have been an ongoing concern as the enterprise adoption of generative ...
Go, attacker,

Bad Actor Targets Linux, macOS Developers with Typosquatted Go Packages

| | Cybersecurity, Go, software supply chain risks, typosquatting
The attacker published at least seven malicious packages on the Go Module Mirror that, if installed, will deliver a backdoor ...
GitHub, supply chain, Bazel, CI/CD Mezmo DataOps GitLab GitHub OpsRamp GitOps - DevOps - CI/CD

Fake Stars in GitHub a Growing Security Threat, Analysis Finds

| | GitHub repositories, Repository Security, software supply chain risks, stargazing
There was a surge of inauthentic stars on code repositories in 2024, ramping up the threat of software supply chain attacks ...
Pulumi, secrets, GitHub, repository, secrets, legit security, leaking, software, GitGuardian secrets code Secrets BluBracket SaaS

Stop Leaking Secrets!

| | circleCI, CodeCov, exposed secrets, secret detection, secret leaks, software development pipeline, software development secrets, software supply chain risks, Software Supply Chain Security
All too often, software teams trip over complexities and inadvertently leave secrets exposed in private and public software repositories ...