Stories by abhisek

CVE-2025-66491: Traefik's "Verify=on" Turned TLS Off

DarkGPT: Malicious Visual Studio Code Extension Targeting Developers

Exposing and Exploiting Incomplete Branch Predictor Isolation in Cloud

KnownSec breach: What we know so far

Buying browser extensions for fun and profit

Curious Case of Embedded Executable in a Newly Introduced Transitive Dependency

NPM Supply Chain Malware with Self-Replicating Behaviour

Tensorflow.js Typosquatting Attack: Malicious Package Targeting AI/ML Developers

Secure Vibe Coding with AI Agents

ESLint-config-prettier: How NPM Package with 30M Downloads Spread Malware

Scavenger Malware Distributed via ESLint-Config-Prettier NPM Package Hack

Near Real-Time Stream of Open Source Packages Published to Public Registries

Critical RCE Vulnerability in Anthropic MCP Inspector – CVE-2025-49596

Ask HN: HN: Why do we code review?

The PostgreSQL Locking Trap That Killed Our Production API (and How We Fixed It)

Show HN: Xbom – Generate AI and SaaS-Aware SBOMs from Code Using Static Analysis

Vet MCP: Software Composition Analysis for AI Code Editors

Catching the Silent Threat: How Dynamic Analysis Revealed an NPM Attack Chain

Kubernetes Limits Links to Third Party Projects

1