Skip to main content

Blog Archive

Topic
Audience

Showing 1 - 24 of 390 posts

Supply Chain Security

Node-gyp Supply Chain Compromise: A Self-Propagating npm Worm That Hides in binding.gyp

June 4, 2026

AI

Protestware by open source maintainer to hinder agentic coding: The jqwik 1.10.0 Prompt Injection

June 2, 2026

Supply Chain Security

TanStack Npm Packages Compromised Inside The Mini Shai Hulud Supply Chain Attack

May 11, 2026

Supply Chain Security

lightning PyPI Compromise: A Bun-Based Credential Stealer in Python

April 30, 2026

Supply Chain Security

"A Mini Shai-Hulud Has Appeared": Bun-Based Stealer Hits SAP @cap-js and mbt npm Packages

April 29, 2026

Application Security

Qinglong task scheduler RCE vulnerabilities exploited in the wild for cryptomining

April 27, 2026

AI

JPMorgan Just Published a Cyber To-Do List and Snyk Covers 8 of the 10 Items. How do you stack up?

April 23, 2026

AI

You Patched LiteLLM, But Do You Know Your AI Blast Radius?

April 2, 2026

AI

How a Poisoned Security Scanner Became the Key to Backdooring LiteLLM

March 24, 2026

AI

Securing the Agent Skills Registry: How Snyk and Tessl Are Setting the Standard

March 17, 2026

AI

The 89% Problem: How LLMs Are Resurrecting the "Dormant Majority" of Open Source

March 4, 2026

AI

Claude Code Security: A Welcome Evolution in the Remediation Loop

February 23, 2026

AI

How “Clinejection” Turned an AI Bot into a Supply Chain Attack

February 19, 2026

AI

Snyk and Cline: Securing the Future of Autonomous Coding

February 18, 2026

AI

Exploitability Isn’t the Answer. Breakability Is.

February 12, 2026

AI

How a Malicious Google Skill on ClawHub Tricks Users Into Installing Malware

February 10, 2026

AI

Beyond Detection: Building a Resilient Software Supply Chain (Lessons from the Shai-Hulud Post-Mortem)

January 8, 2026

Application Security

The Holiday Whisper: Shai-Hulud 3.0

December 29, 2025

AI

How Snyk Helps Federal Agencies Prepare for the Genesis Mission Era of AI-Driven Science

December 9, 2025

AI

Run AutoMCP To Supercharge Your AI Agent with Libraries MCP Servers

December 3, 2025

AI

Scaling AI Security: How Evo Complements New Agentic Tools

November 24, 2025

AI

Snyk and Continue Partner to Embed AI-Powered Security into Every Step of the Developer Workflow

November 18, 2025

Supply Chain Security

Automated Package-Publication Incident IndonesianFoods in the NPM Ecosystem Linked to Crypto Reward-Farming Scam

November 13, 2025

AI

Malicious MCP Server on npm postmark-mcp Harvests Emails

September 25, 2025

1Page 2Page 3Page 4Page 5Page 17

Subscribe to our newsletter

Get all latest content from Snyk directly to your mailbox.