Skip to main content

Blog Archive

Topic
Audience

Showing 1 - 24 of 66 posts

Supply Chain Security

Laravel Lang Supply Chain Advisory

May 23, 2026

Supply Chain Security

Mini Shai-Hulud Hits AntV: 300+ Malicious npm Packages Published via Compromised Maintainer Account

May 18, 2026

Supply Chain Security

Malicious node-ipc versions published to npm in suspected maintainer account compromise

May 15, 2026

Supply Chain Security

TanStack Npm Packages Compromised Inside The Mini Shai Hulud Supply Chain Attack

May 11, 2026

Supply Chain Security

lightning PyPI Compromise: A Bun-Based Credential Stealer in Python

April 30, 2026

Supply Chain Security

"A Mini Shai-Hulud Has Appeared": Bun-Based Stealer Hits SAP @cap-js and mbt npm Packages

April 29, 2026

Supply Chain Security

Malicious Release of elementary-data PyPI Package Steals Cloud Credentials from Data Engineers

April 27, 2026

AI

JPMorgan Just Published a Cyber To-Do List and Snyk Covers 8 of the 10 Items. How do you stack up?

April 23, 2026

AI

Governing Security in the Age of Infinite Signal – From Discovery to Control

April 10, 2026

AI

You Patched LiteLLM, But Do You Know Your AI Blast Radius?

April 2, 2026

Supply Chain Security

Axios npm Package Compromised: Supply Chain Attack Delivers Cross-Platform RAT

March 30, 2026

AI

How a Poisoned Security Scanner Became the Key to Backdooring LiteLLM

March 24, 2026

AI

Introducing Agent Security

March 23, 2026

AI

Securing the Agent Skills Registry: How Snyk and Tessl Are Setting the Standard

March 17, 2026

AI

I Read Cursor's Security Agent Prompts, So You Don't Have To

March 17, 2026

AI

How “Clinejection” Turned an AI Bot into a Supply Chain Attack

February 19, 2026

AI

Securing the Agent Skill Ecosystem: How Snyk and Vercel Are Locking Down the New Software Supply Chain

February 17, 2026

AI

Weaving Security into the Flow: New Snyk Studio Capabilities Power the AI Security Fabric

February 17, 2026

AI

Exploitability Isn’t the Answer. Breakability Is.

February 12, 2026

AI

How a Malicious Google Skill on ClawHub Tricks Users Into Installing Malware

February 10, 2026

AI

Beyond Detection: Building a Resilient Software Supply Chain (Lessons from the Shai-Hulud Post-Mortem)

January 8, 2026

AI

Secure by Default: Why Snyk and Augment Code are the New Standard for AI Development

January 7, 2026

Application Security

The Holiday Whisper: Shai-Hulud 3.0

December 29, 2025

AI

Evo Adds CycloneDX Support to Give Full AI Visibility

December 19, 2025

1Page 2Page 3

Subscribe to our newsletter

Get all latest content from Snyk directly to your mailbox.