Topic

#supply-chain

2 articles exploring supply-chain. Expert insights and analysis from our editorial team.

Showing 1–2 of 2 articles
Related topics:
pypi ci-cd llm-tooling credential-theft security licensing

Articles

Newest first
Security

How the TeamPCP Group Backdoored LiteLLM via a Poisoned CI Scanner — and What It Means for Every AI Python Stack

TeamPCP stole LiteLLM's PyPI token through a compromised Trivy GitHub Action, shipping credential-stealing releases to 36% of monitored cloud environments.

· 7 min read
Open Source

The 2026 OSSRA Report: AI Coding Tools Are Behind a 107% Surge in Open-Source Vulnerabilities

Black Duck's 2026 OSSRA found 581 mean vulnerabilities per codebase — double last year. Here's what's driving it and how to audit your own repo.

· 6 min read
Browse All Topics