Multiple weaponized proof-of-concept (PoC) exploits on GitHub delivered a Python-based remote access trojan (RAT) called ChocoPoC that can execute commands and steal sensitive data. However, ChocoPoC ...
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
Secure software supply chain solution provider Chainguard Inc. today expanded its Chainguard Repository product with malware ...
This project is a fork of psycopg, originally developed by the Psycopg Team. Original work: Copyright © 2020 The Psycopg Team License: GNU Lesser General Public ...
This repository separates the RH endpoint audit surface from the broader AASC working checkout. It contains the reusable AASC foundation layer, the RH-specific prime-trace amplitude endpoint Lean ...