6mile

Karma: 22
Created: 4 years ago

About

Software supply chain research, created GitHax, threat intel platform for supply chain threats and former founder of SecureStack. Author of open-source projects like the DevSecOps Playbook, TVPO threat modelling framework, and more.

Recent Submissions

1. ▲ VSCode Tasks files used in new malware campaign (opensourcemalware.com) 4 points · 13 days ago · 0 comments
2. ▲ Undelete NPM Packages (npmjs.com) 3 points · 1 month ago · 1 comment
3. ▲ Three myths about NPM Malware (sourcecodered.com) 1 point · 10 months ago · 1 comment
4. ▲ Malicious NPM package targets prettier library (sourcecodered.com) 15 points · 10 months ago · 7 comments
5. ▲ NPM packages deploy reverse shells when installed (sourcecodered.com) 4 points · 11 months ago · 0 comments
6. ▲ New Gitloker attack targets GitHub users (sourcecodered.com) 1 point · 1 year ago · 0 comments
7. ▲ Show HN: Visualize your software supply chain (github.com) 4 points · 2 years ago · 1 comment
8. ▲ Real-time continuous compliance for the SDLC (securestack.com) 1 point · 3 years ago · 0 comments
9. ▲ Show HN: DevSecOps Playbook – step by step guide to building more secure apps (github.com) 1 point · 3 years ago · 0 comments
10. ▲ Show HN: GitHub Action to find Log4j vulnerabilities (github.com) 2 points · 3 years ago · 0 comments

All submissions on HN · View profile on HN

Settings

6mile

About

Recent Submissions

Keyboard Shortcuts