Blog Posts | Joshua Berkowitz

5 Articles

github × supply chain ×

VSCode Extension Marketplaces: Uncovering a Critical Supply Chain Risk

Most developers trust their code editor extensions, but recent research reveals a hidden danger. Sensitive secrets embedded in VSCode and Open VSX marketplaces put over 150,000 users at risk. These vu...

AI security extension security malware risk Microsoft secrets management supply chain VSCode

Oct 15, 2025

0 23287

News

AI-Invoking Malware: The Evolution of Cyber Threats

Security company Wiz is noting that cyber attackers are rapidly evolving and are now embedding artificial intelligence directly into malware payloads. This marks a significant departure from using AI ...

AI security cybersecurity LLM malware ransomware supply chain threat detection

Sep 27, 2025

0 2420

News

Shai-Hulud: The First Self-Propagating npm Supply Chain Worm

In September 2025, the JavaScript community experienced a watershed moment: the Shai-Hulud worm swept through npm, infecting over 100 popular packages. This attack was not just another instance of mal...

DevSecOps GitHub incident response JavaScript malware npm security supply chain

Sep 19, 2025

0 4928

News

Trivy, Unpacked: One Scanner For Containers, Code, And Clusters

Security tooling often splinters by surface area: one product for containers, another for code, another for Kubernetes. Trivy takes the opposite approach. It is a single, open-source scanner that unde...

container security CVE Kubernetes SBOM supply chain trivy

Aug 24, 2025

0 5852

Github Repos

Malicious Extensions Can Fake Verification in Popular IDEs

You may be installing what appears to be a "verified" extension in your trusted code editor only to discover it’s actually a cleverly disguised trojan horse. A recent study has spotlighted this alarmi...

cybersecurity developer tools extension security IDEs Microsoft software development supply chain Visual Studio Code

Aug 5, 2025

0 2068

News

Our latest content

Check out what's new !

See all

Ads

Prompt Maker Image Generator

Struggling with the perfect AI image prompt? My free app helps you generate brilliant ideas and instantly creates an image to match. Go from concept to creation in two clicks!

Most Popular Articles

Check out what the hot topics are!

See all

Every shirt tells a story—and every story

#ClothingForACause