All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Chainguard's scanner detects "greyware" in 52,000 open-source packages that evade traditional security checks

By

Darryl K. Taft

19d ago· 8 min readenNews

Summary

Chainguard, a supply chain security firm, introduced a new source code scanner that detects "greyware" — open-source packages that pass standard security checks but still engage in malicious behavior like credential theft, API key harvesting, and data exfiltration. The company analyzed 52,000 open-source packages and found that many contain hidden threats that traditional malware detection tools miss. The article highlights the growing risks in AI-generated and agentic development, where non-technical users assemble applications from open-source components they assume are safe.

Source

bskyChainguard's scanner detects "greyware" in 52,000 open-source packages that evade traditional security checksbit.ly

Key quotes

· 3 pulled
Don't just grab random stuff off the internet
Greyware — open source packages that pass every security check but still steal credentials, harvest API keys, and phone home to remote servers
The promise of agentic development is that anyone can vibe code a solution into existence without waiting on an engineering team
Snippet from the RSS feed
Chainguard's new scanner blocks "greyware" — open source packages that pass every security check but still steal credentials, harvest API keys, and phone home to remote servers.

You might also wanna read

Supply Chain Attacks on Open-Source Software: Case Study of Malicious Pull Request Attempts

The article discusses recent supply chain attacks on open-source software projects like LiteLLM and axios, with a specific case study of att

casco.com·2mo ago

Glassworm Threat Actor Returns with Unicode-Based Supply Chain Attacks on GitHub, npm, and VS Code

The Glassworm threat actor has returned with a new wave of supply chain attacks using invisible Unicode characters to compromise software re

aikido.dev·3mo ago

Software Supply Chain Attacks: Exploiting Trust Assumptions in Modern Development

The article examines the growing threat of software supply chain attacks that exploit fundamental trust assumptions in modern development wo

blog.trailofbits.com·8mo ago

DepsGuard: Open-source Rust tool to harden package manager configs against supply chain attacks

DepsGuard is an open-source Rust tool (single static binary, zero Rust crate dependencies) that hardens package manager configurations again

github.com·1mo ago

Dependency Guardian: Security Tool for Protecting Software Dependencies from Supply Chain Attacks

Dependency Guardian is a security tool that monitors and protects software dependencies from supply chain attacks. It uses 30+ behavioral de

westbayberry.com·4mo ago

Config File Auto-Execution Creates Supply Chain Security Blindspot Across IDEs and Package Managers

This article exposes a critical supply chain security blindspot where ordinary-looking configuration files in code repositories can automati

safedep.io·26d ago

Comments

Sign in to join the conversation.

No comments yet. Be the first.