Hacker Newsnew | past | comments | ask | show | jobs | submit | abhisek's submissions login

1. Claude Mythos and Cybersecurity (schneier.com) 4 points by abhisek 35 days ago | past 2. Coruna: The Mysterious Journey of a Powerful iOS Exploit Kit (cloud.google.com) 1 point by abhisek 51 days ago | past 3. Step by Step Analysis of Malicious NPM Package (safedep.io) 1 point by abhisek 3 months ago | past 4. OpenClaw bot calls out maintainer when its PR got rejected (crabby-rathbun.github.io) 1 point by abhisek 3 months ago | past 5. Show HN: Gryph – Audit Trail for AI Coding Agents (Claude Code, Cursor, Gemini) (github.com/safedep) 1 point by abhisek 3 months ago | past 6. Agent Skills Threat Model (safedep.io) 3 points by abhisek 3 months ago | past 7. Catching malicious package releases using a transparency log (trailofbits.com) 3 points by abhisek 5 months ago | past 8. CVE-2025-66491: Traefik's "Verify=on" Turned TLS Off (aisle.com) 1 point by abhisek 5 months ago | past 9. DarkGPT: Malicious Visual Studio Code Extension Targeting Developers (safedep.io) 2 points by abhisek 5 months ago | past 10. Exposing and Exploiting Incomplete Branch Predictor Isolation in Cloud (ethz.ch) 1 point by abhisek 6 months ago | past 11. KnownSec breach: What we know so far (substack.com) 1 point by abhisek 6 months ago | past 12. Buying browser extensions for fun and profit (secureannex.com) 3 points by abhisek 6 months ago | past | 1 comment 13. Curious Case of Embedded Executable in a Newly Introduced Transitive Dependency (safedep.io) 4 points by abhisek 6 months ago | past 14. NPM Supply Chain Malware with Self-Replicating Behaviour (safedep.io) 2 points by abhisek 8 months ago | past 15. Tensorflow.js Typosquatting Attack: Malicious Package Targeting AI/ML Developers (safedep.io) 2 points by abhisek 9 months ago | past 16. Secure Vibe Coding with AI Agents (safedep.io) 2 points by abhisek 9 months ago | past 17. ESLint-config-prettier: How NPM Package with 30M Downloads Spread Malware (safedep.io) 1 point by abhisek 10 months ago | past 18. Scavenger Malware Distributed via ESLint-Config-Prettier NPM Package Hack (invokere.com) 1 point by abhisek 10 months ago | past 19. Near Real-Time Stream of Open Source Packages Published to Public Registries (vetpkg.dev) 2 points by abhisek 10 months ago | past 20. Critical RCE Vulnerability in Anthropic MCP Inspector – CVE-2025-49596 (oligo.security) 5 points by abhisek 10 months ago | past | 1 comment 21. Ask HN: HN: Why do we code review? 2 points by abhisek 11 months ago | past | 2 comments 22. The PostgreSQL Locking Trap That Killed Our Production API (and How We Fixed It) (root.sigsegv.in) 2 points by abhisek 11 months ago | past 23. Show HN: Xbom – Generate AI and SaaS-Aware SBOMs from Code Using Static Analysis (github.com/safedep) 3 points by abhisek 11 months ago | past 24. Vet MCP: Software Composition Analysis for AI Code Editors (github.com/safedep) 1 point by abhisek 11 months ago | past 25. Catching the Silent Threat: How Dynamic Analysis Revealed an NPM Attack Chain (safedep.io) 2 points by abhisek 11 months ago | past 26. Kubernetes Limits Links to Third Party Projects (github.com/kubernetes) 2 points by abhisek 12 months ago | past 27. Sneaky Malware Hidden in Transitive Dependency of ESLint-config-Airbnb-compat (root.sigsegv.in) 3 points by abhisek on May 16, 2025 | past 28. PMG: Wraps Package Managers to Prevent Installation of Malicious OSS Packages (github.com/safedep) 6 points by abhisek on May 15, 2025 | past 29. Why Build Software Frameworks (root.sigsegv.in) 2 points by abhisek on May 11, 2025 | past 30. AI Agents Are Here. So Are the Threats (paloaltonetworks.com) 1 point by abhisek on May 5, 2025 | past More

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact Search: