For the best experience on desktop, install the Chrome extension to track your reading on news.ycombinator.com
Hacker Newsnew | past | comments | ask | show | jobs | submit | history | fromregister
Axios NPM Package Compromised: Supply Chain Attack Delivers Cross-Platform Rat (snyk.io)
2 points by jruohonen 4 days ago | past | 1 comment
A Poisoned Security Scanner Became the Key to Backdooring LiteLLM (snyk.io)
2 points by cdnsteve 10 days ago | past | discuss
A Poisoned Security Scanner Became the Key to Backdooring LiteLLM (snyk.io)
2 points by taubek 10 days ago | past | discuss
I Read Cursor's Security Agent Prompts, So You Don't Have To (snyk.io)
2 points by rdegges 17 days ago | past
"Clinejection" Turned an AI Bot into a Supply Chain Attack (snyk.io)
1 point by vismit2000 28 days ago | past
"Clinejection" Turned an AI Bot into a Supply Chain Attack – Snyk (snyk.io)
1 point by Daviey 29 days ago | past | 1 comment
The 89% Problem: LLMs are resurrecting the "dormant majority" of open source (snyk.io)
4 points by epicprogrammer 30 days ago | past | 1 comment
Anthropic Just Launched Claude Code Security. That's Great News for the Industry (snyk.io)
3 points by mooreds 40 days ago | past
Newlines, Symlinks, and Arbitrary Writes: High-Severity Vulnerabilities in Incus (snyk.io)
2 points by rmcnamara 65 days ago | past
SHA1-Hulud, NPM supply chain incident (snyk.io)
3 points by tsenturk 4 months ago | past
How Snyk Studio for Qodo Is Closing the AI Security Gap (snyk.io)
1 point by tsenturk 4 months ago | past
Retrieval-Augmented Generation with Bob Remeika from Ragie [audio] (snyk.io)
1 point by mooreds 6 months ago | past
Weaponizing AI Coding Agents for Malware (Nx Event) (snyk.io)
1 point by mitjam 6 months ago | past | 1 comment
Abusing Ubuntu 24.04 features for root privilege escalation (snyk.io)
2 points by todsacerdoti 7 months ago | past
NixOS Privilege Escalation –> Root (snyk.io)
2 points by rdegges 8 months ago | past
NixOS: Declarative Management, Imperative Privilege Escalation (snyk.io)
5 points by Bogdanp 8 months ago | past
Snyk Acquires Invariant Labs (snyk.io)
2 points by od0 9 months ago | past
Authentication, Authorization, and the Future of AI Security [audio] (snyk.io)
3 points by mooreds 11 months ago | past
In Localhost We Trust (snyk.io)
3 points by rdegges on April 3, 2025 | past
Snyk Security Labs Testing Update: Cursor.com AI Code Editor (snyk.io)
6 points by ksbrooksjr on Jan 14, 2025 | past | 1 comment
The security concerns of a JavaScript sandbox with the Node.js VM module (snyk.io)
1 point by stefankuehnel on Dec 22, 2024 | past
Understanding command injection vulnerabilities in Go (snyk.io)
1 point by makaimc on Nov 15, 2024 | past
Abusing Ubuntu 24.04 features for root privilege escalation (snyk.io)
189 points by saltypal on Nov 13, 2024 | past | 77 comments
Snyk Acquires Developer-First DAST Provider Probely (snyk.io)
1 point by LilBytes on Nov 13, 2024 | past | 1 comment
Lottie Player NPM package compromised (snyk.io)
2 points by cloudripper on Oct 31, 2024 | past
Modern Node.js Runtime Features (snyk.io)
2 points by fagnerbrack on June 30, 2024 | past
Escaping from Docker one syscall at a time (snyk.io)
4 points by rdegges on Feb 8, 2024 | past
Runc process.cwd and leaked fds container breakout (CVE-2024-21626) (snyk.io)
3 points by emilburzo on Feb 1, 2024 | past
"Leaky Vessels" Docker Container Breakout Vulnerability (snyk.io)
41 points by rdegges on Jan 31, 2024 | past
How to Keep HTTP Connections Alive for 9 Hours (snyk.io)
3 points by rdegges on Oct 24, 2023 | past

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search:

HN For You