Xygeni Blog

Must-Read Posts

Ectoplasm npm Install Hooks That Steal AWS Credentials

Ectoplasm: npm install hooks that harvest AWS credentials behind a container-only trigger

SeedSweep: Ten Malicious npm Crypto Packages

SeedSweep: Ten Crypto-Themed npm Packages That Only Run When No One Is Watching

PairLoop: Hidden Remote-Control Panel in npm Package

PairLoop: One npm Package, Seventy Versions, and a Hidden Windows Remote-Control Panel

ConsentMask The npm Package Hiding Developer Identity Harvesting

ConsentMask: An npm Package That Wears a Telemetry Consent Banner Over Developer-Identity Harvesting

JulesJacker: Fake npm Worm Impersonates Jules AI

JulesJacker: A Fake-PoC npm Worm That Impersonates Google’s Jules Agent — and Turns on the Sandbox Analyzing It

RuntimeBroker npm Typosquat Plants Crypto Clipper

RuntimeBroker: an npm Typosquat Plants a 40-Chain Crypto-Clipper as a Cross-OS \”System Runtime Helper”\

slsa attestation - slsa framework - SLSA v1.2

Build Security

SLSA v1.2 : Updates to the SLSA Framework Explained

December 5, 2025

OWASP Top 10 2025 -owasp top ten - OWASP Top 10

SDLC

OWASP Top 10 2025 Explained for Developers

December 3, 2025

shai hulud - npm supply chain attack

Attacks Analysis

Shai-Hulud 2.0 NPM Supply Chain Attack

November 28, 2025

AI

AI for Coding Explained: 10 Simple Answers Developers Need

November 21, 2025

AI

Agentic AI: The Complete Guide for Developers, AI Engineers, and AppSec Teams

November 21, 2025

SDLC

Black Hat Europe 2025: Meet Xygeni at Booth 221

November 19, 2025

dockerfile secrets - dockerfile secrets environment variables

Secrets Security

Dockerfile Secrets: Why Layers Keep Your Sensitive Data Forever

November 19, 2025

docker build args - build args docker - docker build build arg

Secrets Security

Docker Build Args: The Hidden Vector for Secret Leaks in Images

November 19, 2025

task.run c# - async programming - parallel execution

Code Security

Task.Run in C#: The Wrong Way to Parallelize Secure Code

November 18, 2025

path traversal attack - file upload vulnerability

Code Security

Path Traversal in File Uploads: How Developers Create Their Own Exploits

November 18, 2025

bepinex.configurationmanager

Code Security

BepInEx.ConfigurationManager: How Insecure Settings Expose Sensitive Data

November 17, 2025

hangfire .net - background job processing c#

Code Security

Hangfire .NET Jobs: How Background Tasks Create Hidden Vulnerabilities

November 17, 2025