Skip to main content

Blog Archive

Topic
Audience

Showing 1 - 24 of 388 posts

Supply Chain Security

TanStack Npm Packages Compromised Inside The Mini Shai Hulud Supply Chain Attack

May 11, 2026

Supply Chain Security

lightning PyPI Compromise: A Bun-Based Credential Stealer in Python

April 30, 2026

Supply Chain Security

"A Mini Shai-Hulud Has Appeared": Bun-Based Stealer Hits SAP @cap-js and mbt npm Packages

April 29, 2026

Application Security

Qinglong task scheduler RCE vulnerabilities exploited in the wild for cryptomining

April 27, 2026

AI

JPMorgan Just Published a Cyber To-Do List and Snyk Covers 8 of the 10 Items. How do you stack up?

April 23, 2026

AI

You Patched LiteLLM, But Do You Know Your AI Blast Radius?

April 2, 2026

AI

How a Poisoned Security Scanner Became the Key to Backdooring LiteLLM

March 24, 2026

AI

Securing the Agent Skills Registry: How Snyk and Tessl Are Setting the Standard

March 17, 2026

AI

The 89% Problem: How LLMs Are Resurrecting the "Dormant Majority" of Open Source

March 4, 2026

AI

Claude Code Security: A Welcome Evolution in the Remediation Loop

February 23, 2026

AI

How “Clinejection” Turned an AI Bot into a Supply Chain Attack

February 19, 2026

AI

Snyk and Cline: Securing the Future of Autonomous Coding

February 18, 2026

AI

Exploitability Isn’t the Answer. Breakability Is.

February 12, 2026

AI

How a Malicious Google Skill on ClawHub Tricks Users Into Installing Malware

February 10, 2026

AI

Beyond Detection: Building a Resilient Software Supply Chain (Lessons from the Shai-Hulud Post-Mortem)

January 8, 2026

Application Security

The Holiday Whisper: Shai-Hulud 3.0

December 29, 2025

AI

How Snyk Helps Federal Agencies Prepare for the Genesis Mission Era of AI-Driven Science

December 9, 2025

AI

Run AutoMCP To Supercharge Your AI Agent with Libraries MCP Servers

December 3, 2025

AI

Scaling AI Security: How Evo Complements New Agentic Tools

November 24, 2025

AI

Snyk and Continue Partner to Embed AI-Powered Security into Every Step of the Developer Workflow

November 18, 2025

Supply Chain Security

Automated Package-Publication Incident IndonesianFoods in the NPM Ecosystem Linked to Crypto Reward-Farming Scam

November 13, 2025

AI

Malicious MCP Server on npm postmark-mcp Harvests Emails

September 25, 2025

Introducing open source security runtime monitoring

Open Source Security

npm Supply Chain Attack via Open Source maintainer compromise

September 8, 2025

Open Source Security

Prioritize with Snyk’s Open Source Vulnerability Experience

August 20, 2025

1Page 2Page 3Page 4Page 5Page 17

Subscribe to our newsletter

Get all latest content from Snyk directly to your mailbox.