The Hacker News

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories before fixes in Sep 2025.
The Hacker News

Why Secrets in JavaScript Bundles are Still Being Missed

Scanning 5M apps uncovered 42K exposed secrets in JavaScript bundles, revealing major gaps in traditional SAST, DAST, and ...
GitHub

LockLLM JavaScript/TypeScript SDK

LockLLM is a state-of-the-art AI security ecosystem that detects prompt injection, hidden instructions, and data exfiltration attempts in real-time. Built for production LLM applications and AI agents ...