Xygeni Blog

Must-Read Posts

open-source packages

Protecting Against Open Source Malicious Packages: What Does (Not) Work

Malicious Packages 5

Anatomy of Malicious Packages: What Are the Trends?

Open Source Malicious Packages: The Problem

XZ Backdoor Attack

XZ Backdoor: “That was a close one”

jumping shell - bin/bash - escape restricted shell

CI CD Security

Jumping Shell: How Attackers Escape Restricted Shells to /bin/bash

August 29, 2025

package-lock.json - package lock json - npm typosquatting

CI CD Security

Package-Lock.json Typo: How It Can Hijack Your Build

August 29, 2025

python try catch - try catch python - try catch block

CI CD Security

Python Try Catch Blocks: When Error Handling Becomes a Risk

August 29, 2025

docker-compose.yml - docker-compose secrets

Secrets Security

Why Docker-compose.yml Is a Security Risk Surface?

August 28, 2025

JavaScript Obfuscator - JavaScript deobfuscator - JavaScript malware

CI CD Security

Why JavaScript Obfuscator Tools Are Abused by Attackers (And How to Detect Them)

August 28, 2025

attack surface management - attack surface -external attack surface management

ASPM

Attack Surface Management in DevSecOps

August 28, 2025

CISA SBOM - SBOM Minimum Elements - SBOM standards - software risk management

Open-Source Security

CISA SBOM 2025: Updates, Standards, and Compliance

August 27, 2025

AI Automated Vulnerability Remediation - code autofix - application security automation - automated application security testing

Code Security

AI Automated Vulnerability Remediation: Black Hat Replay

August 27, 2025

spoofing attack - spoofing definition - what type of attack relies on spoofing

CI CD Security

Spoofing Definition for Developers: What You Need to Know About These Attacks

August 27, 2025

rootkit detection - code integrity

Anomaly Detection

Rootkits Aren’t Just for Sysadmins Anymore: They Live in Repos Too

August 27, 2025

Code Security

Handlebars JS: Safe Usage to Avoid Injection Flaws

August 27, 2025

markdown cheat sheet - Markdown guide - Markdown tips and tricks

CI CD Security

Markdown Cheat Sheet: Tips to Prevent Injection and Formatting Errors

August 26, 2025