Xygeni Blog

Must-Read Posts

SeedSweep: Ten Malicious npm Crypto Packages

SeedSweep: Ten Crypto-Themed npm Packages That Only Run When No One Is Watching

PairLoop: Hidden Remote-Control Panel in npm Package

PairLoop: One npm Package, Seventy Versions, and a Hidden Windows Remote-Control Panel

ConsentMask The npm Package Hiding Developer Identity Harvesting

ConsentMask: An npm Package That Wears a Telemetry Consent Banner Over Developer-Identity Harvesting

JulesJacker: Fake npm Worm Impersonates Jules AI

JulesJacker: A Fake-PoC npm Worm That Impersonates Google’s Jules Agent — and Turns on the Sandbox Analyzing It

RuntimeBroker npm Typosquat Plants Crypto Clipper

RuntimeBroker: an npm Typosquat Plants a 40-Chain Crypto-Clipper as a Cross-OS \”System Runtime Helper”\

AuditorTrap

AuditorTrap: A 22-Package Fake Crypto Security Guild on npm With Two Parallel Payloads

how to merge branches in github, cancel merge github , branch github

Anomaly Detection

Create a Branch in GitHub and Merge Safely

July 8, 2025

Auto Remediation for Modern DevSecOps

Code Security

Auto Remediation for Modern DevSecOps: Fix Fast

July 4, 2025

Software Supply Chain Attacks 2025 - malicious packages - malicious python packages - malicious npm packages

Open-Source Security

A Closer Look at Software Supply Chain Attacks 2025: PyPI & npm Campaigns Compared

July 3, 2025

sca and sbom - sca vs sbom - sbom vs SCA - sca sbom -

Open-Source Security

SCA vs SBOM: What’s the Difference and Why You Need Both

July 2, 2025

developer prevent hacking - what are some practices to prevent hacking- how to prevent hacking

Code Security

How can a Developer Prevent Hacking? Start With SAST and SCA

June 25, 2025

open source software vulnerability scanner - vulnerability scanner open source - open source vulnerability scanner software used in cybersecurity

Code Security

Open Source Vulnerability Scanner: Are They Enough?

June 17, 2025

OWASP AppSec - OWASP Global AppSec - auto remediation

Code Security

OWASP AppSec 2025: Key Takeaways, Auto Remediation with AI, and What’s Coming Next

June 17, 2025

governance risk and compliance software solutions - data governance software - what is grc

SDLC

Governance Risk and Compliance Software, Without the Headache

June 10, 2025

Cybersecurity for Software Applications - cybersecurity software - cybersecurity vs software engineering

SDLC

Cybersecurity for Software Applications: A DevOps-First Look

June 10, 2025

How to Detect Malware - malware detection service - malware detection engine

CI CD Security

How to Detect Malware in Your CI/CD Pipeline Before It Reaches Production

May 30, 2025

ai-powered static application security testing - AI SAST - AI Code Security

AI

AI SAST with AutoFix for DevOps Teams

May 30, 2025

which SBOM platform is best for Software Supply Chain - SBOM management platform

SDLC

Which SBOM Platform Is Best for Software Supply Chain Security?

May 30, 2025