Cache poisoning in popular open source packages
5y agoen
Source
SnykCache poisoning in popular open source packagessnyk.ioThis blog post provides an introduction to web cache poisoning and demonstrates why open source maintainers should take this issue into account.
You might also wanna read
Managing Excessive Web Crawlers on Personal Code Repositories
A developer shares their experience with dealing with excessive web crawlers and bots accessing their personal hobby code repository. The au
Open Source Maintainer Seeks Feedback on Preventing Corporate Exploitation of Their Project
An open source maintainer discusses their frustration with how large corporations exploit open source projects without giving back, and seek
evanhahn.com·7mo ago
What is Web Cache Poisoning, and How Does It Work?
Packetlabs·3y ago
Supply Chain Attacks on Open-Source Software: Case Study of Malicious Pull Request Attempts
The article discusses recent supply chain attacks on open-source software projects like LiteLLM and axios, with a specific case study of att
AI bots are flooding open source repositories with spam, threatening community collaboration
The article discusses the growing problem of AI-generated spam and bot activity flooding open source project repositories. It describes a sp
Cordyceps CI/CD vulnerability exposes supply chain risks across major tech organizations
Security research from Novee Security reveals a CI/CD weakness called "Cordyceps" that allows unauthenticated GitHub users to hijack trusted
thenewstack.io·2d ago
Comments
Sign in to join the conversation.
No comments yet. Be the first.