6mile

Karma: 99
Created: 5 years ago

About

Software supply chain research, created GitHax, threat intel platform for supply chain threats and former founder of SecureStack. Author of open-source projects like the DevSecOps Playbook, TVPO threat modelling framework, and more.

Recent Submissions

1. ▲ Malicious skills targeting Claude Code and Moltbot users (opensourcemalware.com) 176 points · 1 day ago · 87 comments
2. ▲ New Python "RAT-as-a-library" named "Scopper" (getsafety.com) 1 point · 19 days ago · 1 comment
3. ▲ VSCode Tasks files used in new malware campaign (opensourcemalware.com) 4 points · 2 months ago · 0 comments
4. ▲ Undelete NPM Packages (npmjs.com) 3 points · 3 months ago · 1 comment
5. ▲ Three myths about NPM Malware (sourcecodered.com) 1 point · 11 months ago · 1 comment
6. ▲ Malicious NPM package targets prettier library (sourcecodered.com) 15 points · 11 months ago · 7 comments
7. ▲ NPM packages deploy reverse shells when installed (sourcecodered.com) 4 points · 1 year ago · 0 comments
8. ▲ New Gitloker attack targets GitHub users (sourcecodered.com) 1 point · 1 year ago · 0 comments
9. ▲ Show HN: Visualize your software supply chain (github.com) 4 points · 2 years ago · 1 comment
10. ▲ Real-time continuous compliance for the SDLC (securestack.com) 1 point · 3 years ago · 0 comments

All submissions on HN · View profile on HN

Settings

6mile

About

Recent Submissions

Keyboard Shortcuts