MAL-2026-4134 Malicious code in fixed-round (npm)

Part of the Mini Shai-Hulud supply chain attack campaign in which a threat actor compromised the npm account atool and published 631 malicious versions across 314 npm packages in an automated 22-minute burst. Each malicious version injects a preinstall hook that executes a 498KB obfuscated Bun...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential stealer worm. A malicious actor managed to extract a GitHub Actions OIDC token from the runner process and publish tampered versions of 42 @tanstack/ packages to npm, which then spread ...

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

In this article 1. Analyzing the Trivy supply chain compromise 2. Detection and investigation 3. Mitigation and protection guidance 4. Advanced hunting queries 5. References 6. Learn more On March 19, 2026, Trivy, Aqua Security’s widely used open-source vulnerability scanner, was reported to have...

The vulnerability of the GraphQL interface of the Continuous Integration and Delivery application system JetBrains TeamCity, which allows a hacker to perform a CSRF attack

The vulnerability of the GraphQL interface of the Continuous Integration and Delivery application system CI/CD from JetBrains TeamCity is related to the manipulation of inter-site requests. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack remotely...

The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity, which stems from the lack of authentication, allows attackers to compromise the confidentiality of protected information.

The vulnerability of the CI/CD application integration and delivery system of JetBrains TeamCity is related to the absence of authentication. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality of the protected information...

The vulnerability of the CI/CD system’s registration data protection mechanism in TeamCity allows unauthorized access by attackers, enabling them to obtain unauthorized access to protected information.

The vulnerability of the CI/CD application integration and delivery system of JetBrains TeamCity is related to insufficient protection for registration data. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the server for the Continuous Integration and Delivery (CI/CD) system GoCD arises due to an incorrect path name limitation for the restricted access directory. This allows a malicious actor to execute arbitrary code.

The vulnerability of the CI/CD GoCD server exists due to an incorrect pathname limitation for the access-controlled directory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity, due to the lack of measures taken to protect the website structure, allows attackers to carry out XSS attacks.

The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks remotely...

The vulnerability of the HashiCorp Vault plugin in the JetBrains TeamCity continuous integration and delivery system allows a hacker to execute cross-site scripting attacks.

The vulnerability of the HashiCorp Vault plugin for the Continuous Integration and Delivery applications CI/CD system of JetBrains TeamCity exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site...

The vulnerability of the Continuous Integration and Deployment Application Delivery system (CI/CD) of JetBrains TeamCity, related to deficiencies in the authentication process, allows attackers to escalate their privileges.

The vulnerability of the Continuous Integration and Application Delivery system CI/CD of JetBrains TeamCity is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to gain increased privileges...