Obsidian's Security Approach: Minimizing Supply Chain Attack Risks Through Reduced Dependencies
Supply chain attacks are malicious updates that sneak into open source code used by many apps. Here’s how we design Obsidian to ensure that the app is a secure and private environment for your…
Read the full articleYou might also wanna read
ShieldForge Upgrades Supply Chain Security to Protect Wallet UIs from Malicious npm Dependencies
We detail ShieldForge's upgraded internal security protocols against malicious npm dependencies in wallet UIs. Learn how our new scanning to
Software Supply Chain Security Tools: Types, Features & Considerations
Software supply chain security tools provide a range of features to identify and mitigate potential risks and vulnerabilities and play a cri
Obsidian: Local Storage Writing App with Plugin Customization
Store notes on your device, so you can access them quickly, even offline. Use hundreds of plugins and themes, to fit your way of thinking.

September 2025 NPM supply-chain attack compromises popular JavaScript packages
In September 2025, the JavaScript ecosystem faced one of its most disruptive security events to date: a coordinated software supply-chain at

Zero-day Extensive NPM Package Compromise - Shai Hulud Supply Chain Attack
A supply chain attack hit the ngx-bootstrap npm package, embedding malware to steal developer credentials. See affected versions (e.g., 20.0
AWS well-architected best practices for software supply chain security
There have been multiple notable supply chain attacks using the npm Registry since September: Shai-Hulud, Chalk/Debug, one abusing tea.xyz t

Comments
Sign in to join the conversation.
No comments yet. Be the first.