Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

Docker Isn’t Just About Containers Anymore

The container runtime that changed how we deploy software is quietly becoming the infrastructure layer for how we build with ...
GitHub

An open specification for agentic AI security evaluation, from Cisco.

Cisco's Advanced Security Initiatives Group has built and operated an agentic security evaluation internally across several iterations and deployment models, and along the way accumulated a long list ...