abhisek on Hacker News

1

Step by Step Analysis of Malicious NPM Package (opens in new tab)

(safedep.io)

1abhisek1mo ago0

2

OpenClaw bot calls out maintainer when its PR got rejected (opens in new tab)

(crabby-rathbun.github.io)

1abhisek1mo ago0

3

Show HN: Gryph – Audit Trail for AI Coding Agents (Claude Code, Cursor, Gemini) (opens in new tab)

(github.com)

1abhisek1mo ago0

4

Agent Skills Threat Model (opens in new tab)

(safedep.io)

3abhisek1mo ago0

5

Catching malicious package releases using a transparency log (opens in new tab)

(blog.trailofbits.com)

3abhisek3mo ago0

6

CVE-2025-66491: Traefik's "Verify=on" Turned TLS Off (opens in new tab)

(aisle.com)

1abhisek3mo ago0

7

DarkGPT: Malicious Visual Studio Code Extension Targeting Developers (opens in new tab)

(safedep.io)

2abhisek3mo ago0

8

Exposing and Exploiting Incomplete Branch Predictor Isolation in Cloud (opens in new tab)

(comsec.ethz.ch)

1abhisek4mo ago0

9

KnownSec breach: What we know so far (opens in new tab)

(substack.com)

1abhisek4mo ago0

10

Buying browser extensions for fun and profit (opens in new tab)

(secureannex.com)

3abhisek4mo ago1

11

Curious Case of Embedded Executable in a Newly Introduced Transitive Dependency (opens in new tab)

(safedep.io)

4abhisek4mo ago0

12

NPM Supply Chain Malware with Self-Replicating Behaviour (opens in new tab)

(safedep.io)

2abhisek6mo ago0

abhisek

Recent submissions

Step by Step Analysis of Malicious NPM Package (opens in new tab)

OpenClaw bot calls out maintainer when its PR got rejected (opens in new tab)

Show HN: Gryph – Audit Trail for AI Coding Agents (Claude Code, Cursor, Gemini) (opens in new tab)

Agent Skills Threat Model (opens in new tab)

Catching malicious package releases using a transparency log (opens in new tab)

CVE-2025-66491: Traefik's "Verify=on" Turned TLS Off (opens in new tab)

DarkGPT: Malicious Visual Studio Code Extension Targeting Developers (opens in new tab)

Exposing and Exploiting Incomplete Branch Predictor Isolation in Cloud (opens in new tab)

KnownSec breach: What we know so far (opens in new tab)

Buying browser extensions for fun and profit (opens in new tab)

Curious Case of Embedded Executable in a Newly Introduced Transitive Dependency (opens in new tab)

NPM Supply Chain Malware with Self-Replicating Behaviour (opens in new tab)

Recent submissions

Step by Step Analysis of Malicious NPM Package (opens in new tab)

OpenClaw bot calls out maintainer when its PR got rejected (opens in new tab)

Show HN: Gryph – Audit Trail for AI Coding Agents (Claude Code, Cursor, Gemini) (opens in new tab)

Agent Skills Threat Model (opens in new tab)

Catching malicious package releases using a transparency log (opens in new tab)

CVE-2025-66491: Traefik's "Verify=on" Turned TLS Off (opens in new tab)

DarkGPT: Malicious Visual Studio Code Extension Targeting Developers (opens in new tab)

Exposing and Exploiting Incomplete Branch Predictor Isolation in Cloud (opens in new tab)

KnownSec breach: What we know so far (opens in new tab)

Buying browser extensions for fun and profit (opens in new tab)

Curious Case of Embedded Executable in a Newly Introduced Transitive Dependency (opens in new tab)

NPM Supply Chain Malware with Self-Replicating Behaviour (opens in new tab)