abhisek

Karma: 297
Created: 13 years ago

About

Dabbling into open source software supply chain security

github.com/safedep/pmg

Recent Submissions

1. ▲ Step by Step Analysis of Malicious NPM Package (safedep.io) 1 point · 9 days ago · 0 comments
2. ▲ OpenClaw bot calls out maintainer when its PR got rejected (crabby-rathbun.github.io) 1 point · 17 days ago · 0 comments
3. ▲ Show HN: Gryph – Audit Trail for AI Coding Agents (Claude Code, Cursor, Gemini) (github.com) 1 point · 28 days ago · 0 comments
4. ▲ Agent Skills Threat Model (safedep.io) 3 points · 1 month ago · 0 comments
5. ▲ Catching malicious package releases using a transparency log (blog.trailofbits.com) 3 points · 2 months ago · 0 comments
6. ▲ CVE-2025-66491: Traefik's "Verify=on" Turned TLS Off (aisle.com) 1 point · 2 months ago · 0 comments
7. ▲ DarkGPT: Malicious Visual Studio Code Extension Targeting Developers (safedep.io) 2 points · 2 months ago · 0 comments
8. ▲ Exposing and Exploiting Incomplete Branch Predictor Isolation in Cloud (comsec.ethz.ch) 1 point · 3 months ago · 0 comments
9. ▲ KnownSec breach: What we know so far (substack.com) 1 point · 3 months ago · 0 comments
10. ▲ Buying browser extensions for fun and profit (secureannex.com) 3 points · 3 months ago · 1 comment

All submissions on HN · View profile on HN