Featured Article

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

By Ax Sharma on April 16, 2024 vulnerabilities

The Sonatype Security Research team has identified over 15,000 npm packages that flood npm registry in a new trend where devs involved in the blockchain and cryptocurrency communities are leveraging

Read More

What Developers Need to Know About WhatsApp's Recent Security Dilemma

By Katie McCaskey on October 08, 2019 AppSec

3 minute read time

Sonatype issues an Advisory Deviation Notice for CVE-2019-11932, a vulnerability that exploits processor memory and recently affected WhatsApp.

Read More...

How Big is a Billion? Open Source Growth Skyrockets

By Derek Weeks on November 10, 2014 Cyber Supply Chain Management and Transparency Act

2 minute read time

How Big is a Billion? Open Source Growth Skyrockets

Read More...

Devs flood npm with 15,000 packages to reward themselves with Tea 'tokens'

What Developers Need to Know About WhatsApp's Recent Security Dilemma

How Big is a Billion? Open Source Growth Skyrockets

Secure your software supply chain

Subscribe for all the latest software security news and events