CI/CD

Lazarus Group’s Covert Supply Chain Attack: North Korean APT Poisons Open Source to Steal Developer Secrets Lazarus Group Moobot botnet Ransomware War

Lazarus Group Moobot botnet Ransomware War

Lazarus Group’s Covert Supply Chain Attack: North Korean APT Poisons Open Source to Steal Developer Secrets

ddos August 5, 2025

In the first half of 2025, Sonatype uncovered a large-scale, ongoing assault on the open-source software ecosystem,...

Harden-Runner: EDR for CI/CD Stops Supply Chain Attacks Cold CI/CD Security

CI/CD Security

Harden-Runner: EDR for CI/CD Stops Supply Chain Attacks Cold

ddos July 5, 2025

Corporate laptops and production servers typically have robust security monitoring in place to reduce risk and meet...

SadGuard: Dynamic Code Analysis + Supply Chain Detection Attack Supply Chain Security

Supply Chain Security

SadGuard: Dynamic Code Analysis + Supply Chain Detection Attack

ddos June 5, 2025

An AI-powered, self-hosted GitHub bot designed to detect and mitigate supply chain attacks in pull requests. SadGuard...

RedRays ABAP Code Analyzer: Open-Source Security Scanner for SAP ABAP Code Scanner

Code Scanner

RedRays ABAP Code Analyzer: Open-Source Security Scanner for SAP ABAP

ddos June 3, 2025

The ABAP Code Scanner is a powerful tool designed to analyze ABAP (Advanced Business Application Programming) code...

kntrl: Real-time eBPF Runtime Security for Your CI/CD Pipelines eBPF Security

eBPF Security

kntrl: Real-time eBPF Runtime Security for Your CI/CD Pipelines

ddos June 2, 2025

kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on...