← Explore

Posts tagged with supply-chain

Security Briefing · ·5 min read

The Trivy Compromise Was Just Day One

When Aqua Security disclosed the Trivy compromise on March 19, most teams treated it as a contained incident. Rotate the secrets, pin to a safe commit, move on.

supply-chainteampcpcredential-rotation
Security Briefing · ·5 min read

One Prototype Pollution Bug Away From Losing Your AWS Keys

Everyone noticed when Axios got backdoored on March 31st.

prototype-pollutionaxioscloud-security
GPU Economics · ·5 min read

Forget GPUs — the Real Shortage Is Everything Else in Your Rack

We spent three years panicking about GPU availability.

dramcpu-shortagesupply-chain
GPU Economics · ·5 min read

The HBM Tax: Why Memory Costs Now Dominate Your AI Compute Budget

Twelve months ago, if you asked an ML platform team what kept them up at night, the answer was GPU availability.

hbmmemorygpu-pricing
Neural Dispatch · ·6 min read

OpenClaw Hit 250K Stars. Then 12% of Its Plugin Registry Turned Out to Be Malware.

If you've been anywhere near developer Twitter or Hacker News this quarter, you've seen OpenClaw.

openclawsecurityai-agents
Security Briefing · ·5 min read

From One Stolen Token to 50 Compromised Packages: Anatomy of the TeamPCP Supply Chain Attack

#From One Stolen Token to 50 Compromised Packages: Anatomy of the TeamPCP Supply Chain Attack It started with a pull_request_target misconfiguration in a...

supply-chainpypinpm
← Prev 2 / 2