Login
GitLab discovers widespread NPM supply chain attack
(about.gitlab.com) by OuterVale | view | 258 comments
Supply chain attacks are exploiting our assumptions
(blog.trailofbits.com) by crescit_eundo | view | 52 comments
Dutch chipmaker Nexperia urges Chinese units to help restore supply chain
(reuters.com) by ilamont | view | 1 comments
Supply Chain Alert: Sipeed's Official COMTools Software Flagged as Trojan
by dripmet | view | 2 comments
The AI frenzy is causing a worldwide supply chain crisis, as prices soar
(nypost.com) by 1vuio0pswjnm7 | view | 2 comments
Microsoft Signing Transparency: Secure Software Supply Chains
(azure.microsoft.com) by speckx | view | 0 comments
SHA1-Hulud, NPM supply chain incident
(snyk.io) by tsenturk | view | 0 comments
Shai-Hulud Strikes Again, Again. (NPM Supply Chain Attack)
(socket.dev) by pvtmert | view | 1 comments
Nix Sucks; Everything Else Is Worse: Building Better Software Supply Chains [video]
(youtube.com) by todsacerdoti | view | 0 comments
Metals are key to the global economy – three challenges threaten supply chains
(nature.com) by zeristor | view | 1 comments
Show HN: I built a D2C supply chain for my village's Makhana farmers using Bolt
(earthborn-barsoi.vercel.app) by Vikkyv | view | 3 comments
Shai-Hulud 2.0 Supply Chain Attack: 25K+ Repos Exposing Secrets
(wiz.io) by samuel246 | view | 1 comments
GitLab discovers widespread NPM supply chain attack
(about.gitlab.com) by soheilpro | view | 1 comments
Zapier just had a supply chain attack
by hoppp | view | 1 comments
Supply Chain Security made the OWASP Top Ten, this changes nothing
(anchore.com) by birdculture | view | 0 comments
SBoM Diffing: Next Frontier for Supply Chain Security
(worklifenotes.com) by taleodor | view | 0 comments
Palisade: Bringing Zero-Trust to the AI Model Supply Chain
(highflame.com) by sharathr | view | 1 comments
Custom T-Shirts and Merch – Print on Demand, Bulk Pricing – The Supply Chain
(thesupplychain.io) by Luki1234 | view | 0 comments
The Efficiency Trap of the Food Supply Chain
(adlrocha.substack.com) by adlrocha | view | 0 comments
Redacted by Counsel: A supply chain postmortem
(heartbreak.ing) by ravenical | view | 0 comments
The Supply Chain Nightmare Before Deployment
(socket.dev) by feross | view | 0 comments
Harden Runner Detected the SHA1-Hulud Supply Chain Attack in CNCF's Backstage
(stepsecurity.io) by varunsharma07 | view | 1 comments
How to Defend Against NPM Software Supply Chain Attacks
(endorlabs.com) by danielhaven | view | 0 comments
AI supply chain attacks [video]
(youtube.com) by saltysalt | view | 0 comments
Show HN: Litterbox – Defend Against Supply Chain Attacks
(litterbox.work) by Gerharddc | view | 0 comments
OreNPMGuard v2.0.0 – OSS for Shai-Hulud 2.0 NPM supply chain attack
by ahsansmir | view | 0 comments
PyPitfall: Dependency Chaos and Software Supply Chain Vulnerabilities in Python
(nocomplexity.substack.com) by runningmike | view | 0 comments
GM wants parts makers to pull supply chains from China
(reuters.com) by ilamont | view | 0 comments
Cencora makes $1B investment in pharma supply chains
(freightwaves.com) by crescit_eundo | view | 0 comments