Contact DMCA Privacy

Robuta

Sponsor of the Day: Jerkmate
https://safedep.io/malicious-forge-jsx-npm-rat/ forge-jsx npm Package: Purpose-Built Multi-Platform RAT - Real-time Open Source Software Supply... forge-jsx poses as an Autodesk Forge SDK on npm. On install it deploys a system-wide keylogger, recursive .env file scanner, shell history exfiltrator, and a... real time opensource software supplynpm packagepurpose builtmulti platform https://safedep.io/blog/ Blog - Real-time Open Source Software Supply Chain Security SafeDep continuously scans packages published in npm, PyPI, RubyGems, and more for malicious code, protecting software development teams at different stages of... blog real timeopen source softwaresupply chain security https://safedep.io/shai-hulud-second-coming-supply-chain-attack/ Shai-Hulud 2.0 npm Supply Chain Attack Technical Analysis - Real-time Open Source Software Supply... Critical npm supply chain attack compromises zapier-sdk, @asyncapi, posthog, and @postman packages with self-replicating malware. Technical analysis reveals... shai hulud 2npm supply chainanalysis real timeopen source software https://safedep.io/malicious-velora-dex-sdk-npm-compromised-rat/ Malicious @velora-dex/sdk Delivers Go RAT via npm - Real-time Open Source Software Supply Chain... Version 9.4.1 of @velora-dex/sdk, a DeFi SDK with ~2,000 weekly downloads, was compromised to deliver a Go-based remote access trojan (minirat) targeting macOS... real time opensource software supplydelivers govia npmmalicious https://safedep.io/malicious-js-logger-pack-npm-stealer/ Malicious npm Package js-logger-pack Ships a Multi-Platform WebSocket Stealer - Real-time Open... js-logger-pack spent three weeks on npm evolving from a probe into a full infostealer and then a binary dropper. Early versions installed an SSH backdoor,... malicious npm packagereal time openmulti platformjslogger https://www.elastic.co/about/press/elastic-acquires-packetbeat Elastic Acquires Packetbeat: The First Real-Time, Open Source Network Packet Analytics Solution |... Elastic, the company behind the popular open source projects Elasticsearch, Logstash, and Kibana with more than 20 million downloads, today announced it has... first real timeopen source networkanalytics solutionelasticacquires https://safedep.io/ SafeDep - Real-time Open Source Software Supply Chain Security SafeDep helps teams detect malicious packages, protect AI agents, and govern open source risk across developer machines, CI/CD pipelines, and production... real time opensource software supplychain securitysafedep https://safedep.io/ci-cd-security/ CI/CD Supply Chain Security: Block Malicious Packages Before They Merge - Real-time Open Source... SafeDep scans every pull request for malicious dependencies. Compromised packages are blocked before they reach your main branch. Install the GitHub App in... supply chain securityreal time openci cdblock maliciouspackages https://safedep.io/malicious-fairwords-npm-credential-worm/ @fairwords npm Packages Hit by Credential Worm - Real-time Open Source Software Supply Chain... Three @fairwords npm packages were compromised with a self-propagating worm that harvests credentials, crypto wallets, Chrome passwords, and spreads to other... real time opensource software supplynpm packageshitcredential https://safedep.io/bitwarden-cli-supply-chain-compromise/ Bitwarden CLI Supply Chain Compromise - Real-time Open Source Software Supply Chain Security A technical writeup of the malicious `@bitwarden/cli@2026.4.0` release linked to the Checkmarx campaign. Covers the poisoned publish path, loader changes,... supply chain compromisereal time opensource software securitybitwarden cli https://aomedia.org/blog%20posts/Demonstrating-Real-Time-AV2-Decoding-on-Consumer-Laptops/ Demonstrating Real Time AV2 Decoding on Consumer Laptops | Alliance for Open Media real timeopen mediademonstratingav2decoding https://apricot.blender.org/tutorial-texture-splatting/ Yo Frankie! – Apricot Open Game Project » Videotutorial: Texture Splatting in Real Time apricot open gameyo frankiereal timeprojectvideotutorial https://osadl.org/Real-time-Ethernet-PTP-TSN-synchroniza.qa-farm-rt-ptp-tsn-star-sync.0.html Real-time Ethernet (PTP/TSN) synchronization analysis (star topology): OSADL - Open Source... OSADL promotes and supports the use of Open Source software in the automation and machine industry. osadl open sourcereal timeethernetptptsn