Xygeni Blog

Must-Read Posts

inject environment variables to the build process

Inject Environment Variables to the Build Process Securely

Axios npm Compromise

Axios npm Compromise: What Happened, Who Is Affected, and How to Prevent It

LiteLLM Supply Chain Attack

LiteLLM Attack: How Xygeni Stops Secret Exposure Fast

LiteLLM Supply Chain Attack

LiteLLM Supply Chain Attack: How TeamPCP Backdoored AI Infrastructure

AI Coding Assistant Security: How to Prevent Vulnerabilities in AI-Generated Code

How to Implement AI Remediation in DevSecOps

Open Source Malicious Packages: The Problem

Must Read

Open Source Malicious Packages: The Problem

June 26, 2024

CI CD Security

DORA Implementation and Cyber Resilience

June 13, 2024

Attacks Analysis

The Most Infamous Malware Attacks in History

June 11, 2024

Open-Source Security

Simplifying Open Source Licensing Compliance

June 7, 2024

JA_NPM

Attacks Analysis

NPM flooding case-study: “Down the Rabbit Hole looking for a Tea”

May 29, 2024

RSA_Conference_2024_Cover

Software Supply Chain

Highlights from RSA Conference 2024: Must-Watch Talks

May 24, 2024

SafeDev Talk III - ASPM

ASPM

Do You Need ASPM in Your Life?

May 23, 2024

Xygeni’s_ASPM_James_Berthoty

ASPM

Discover Xygeni’s ASPM Revolution with James Berthoty

May 22, 2024

Software-Dependencies-Attacks

Attacks Analysis

Identifying and Managing Software Dependencies Attacks

May 16, 2024

Typosquatting_vs_Copycat_Packages

Attacks Analysis

Typosquatting vs. Copycat Packages: Understanding the Differences

May 16, 2024

Socially Engineered Attacks

Open-Source Security

Defending Open Source: The Battle Against Socially Engineered Attacks

May 9, 2024

Open-Source-Packages

Open-Source Security

New Threats on the Block: Malware in Open Source Packages

April 25, 2024