DeviceDoor: a public npm package shipping a Microsoft 365 device-code phishing and bulk-mail framework
OWASP Global AppSec EU 2026 Vienna: Key Takeaways on Secure Software Supply Chain, MCP Security, and the AI-BOM
Open-Source Security Understanding CVE-2023-50164: A Critical Apache Struts Vulnerability February 13, 2025