Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python ...

VS Code keeps adding new features as time goes on, and if you weren't careful, you likely missed things like sticky scroll, ...

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...

Hackers breach Checkmarx developer tools to steal sensitive data, exposing risks in widely used software systems.

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

A massive, self-replicating GlassWorm supply-chain attack has compromised hundreds of code repositories and extensions on ...

Cline's Kanban runs multiple CLI agents in parallel with isolated git worktrees. Free, open source, no account required.