Heimdallr: Characterizing and Detecting LLM-Induced Security Risks in GitHub CI Workflows

GitHub Continuous Integration CI workflows increasingly integrate Large Language Models LLMs to automate review, triage, content generation, and repository maintenance. This creates a new attack surface: externally controllable workflow inputs can shape LLM prompts and outputs, which may in turn...

Argo CD 信息泄露漏洞

Argo CD is an open-source tool developed by Argo for Kubernetes, designed for declarative GitOps continuous delivery. Versions of Argo CD prior to 3.2.11 and 3.3.0–3.3.9 contained a vulnerability related to information leakage. This vulnerability stemmed from a lack of authorization and data...

alika-vuln-shield

Vuln Shield Fast container vulnerability scanner that filters...

CVE-2026-41506 vulnerabilities

Vulnerabilities for packages: flux-source-controller, external-secrets-operator, argocd-image-updater, gitaly, pulumi-language-java, gptscript, guac, pulumi-kubernetes-operator, syft, kyverno, argo-workflows, dagger, xeol, act, src-fingerprint, cerbos, grafana, gitea, nuclei, gitsign, kaniko,...

Your AI Agents Are Already Inside the Perimeter. Do You Know What They're Doing?

Analysts recently confirmed what identity security teams have quietly feared: AI agents are being deployed faster than enterprises can govern them. In their inaugural Market Guide for Guardian Agents, Gartner states that “enterprise adoption of AI agents is accelerating, outpacing maturity of...

Qualys TotalAI Achieves FedRAMP Moderate (FedRAMP Certified Class C) Authorization

Key Takeaways Federal AI adoption is accelerating faster than governance and approved security tooling. Risk now spans models, infrastructure, and the software supply chain. AI threats often mimic normal usage, which makes it difficult to detect with static methods. Meeting mandated federal...

CVE-2026-7812

A vulnerability was found in 54yyyu code-mcp up to 4cfc4643541a110c906d93635b391bf7e357f4a8. The impacted element is the function gitoperation of the file src/codemcp/server.py of the component MCP Tool. Performing a manipulation of the argument operation results in command injection. The attack...

CVE-2026-7589

A vulnerability was determined in ghantakiran splunk-mcp-integration up to 0b86b09d5e5adf0433acd43c975951224613a1a6. Impacted is the function createcsvexport of the file services/csv-export-service/app/api/v1/endpoints/csvexport.py of the component CSV Export. This manipulation of the argument...

Why VM Programs Suck

& From the Trenches This is the conversation I have with VM leads every week. It usually starts at minute thirty of a discovery call, after the official agenda is over and the Zoom faces relax. Someone says "can I be honest with you for a second?" — and then I get the list. Same complaints...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Added outer runtime PM protection to xelivektest@xedmabuf. Any process using the kunit interface that performs memory accesses should receive its own outer runtime PM protection, since it does not use the standard driver...

Astra Linux - уязвимость в orc

Stack-based buffer overflow vulnerability exists in orcparse.c of ORC versions prior to 0.4.39. If a developer is tricked to process a specially crafted file with the affected ORC compiler, an arbitrary code may be executed on the developer's build environment. This may lead to compromise of...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Avoid NULL pointer dereferencing in v3djobupdatestats The following kernel error was recently reported by Mesa CI: 800.139824 Unable to handle NULL pointer dereferencing at virtual address 0000000000000588 800.148619...

CVE-2026-7589

A vulnerability was determined in ghantakiran splunk-mcp-integration up to 0b86b09d5e5adf0433acd43c975951224613a1a6. Impacted is the function createcsvexport of the file services/csv-export-service/app/api/v1/endpoints/csvexport.py of the component CSV Export. This manipulation of the argument...

CSPM vs Exposure Management: Key Differences

Your CSPM tool flags 4,000 misconfigurations every month. Your team remediates 400. Attackers only need one. That gap between what your posture tools report and what actually puts your organization at risk is exactly where exposure management picks up. Book a demo to see how Hive Pro's Uni5 Xposu...

PT-2026-36533

A vulnerability was determined in ghantakiran splunk-mcp-integration up to 0b86b09d5e5adf0433acd43c975951224613a1a6. Impacted is the function create csv export of the file services/csv-export-service/app/api/v1/endpoints/csv export.py of the component CSV Export. This manipulation of the argument...

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

Google has addressed a maximum severity security flaw in Gemini CLI -- the "@google/gemini-cli" npm package and the "google-github-actions/run-gemini-cli" GitHub Actions workflow -- that could have allowed attackers to execute arbitrary commands on host systems. "The vulnerability allowed an...

CTEM Platform: Operationalize All 5 Gartner CTEM Stages With Uni5 Xposure

Your security team runs scans, generates reports, and hands them to IT. Three weeks later, maybe some patches get applied. Meanwhile, attackers exploit the exposures you missed. Uni5 Xposure is the only CTEM platform that unifies all 5 Gartner CTEM stages, from scoping through mobilization, in a...

Uni5 Xposure: The Complete CTEM Platform for Proactive Threat Exposure Management

Stop Reacting to Threats. Start Eliminating Exposure. Uni5 Xposure is the only platform that operationalizes all 5 stages of Gartner's CTEM framework, cutting remediation time by 70% and reducing threat exposure by 80%. To see these capabilities in action, explore the Uni5 Xposure platform and it...

CTEM for Financial Services: Protect What Matters Most

Financial institutions process trillions of dollars in transactions every day. One exploited vulnerability can freeze operations, trigger regulatory penalties, and erode customer trust overnight. Traditional vulnerability management, which scans, scores, and queues patches, cannot keep pace with...

CTEM for Telecom Companies

Protect Network Infrastructure. Prevent Service Disruption. Secure 5G, IoT, and Subscriber Data. Telecommunications companies operate the most interconnected infrastructure on the planet. Your networks carry voice, data, and critical services for millions of subscribers, enterprises, and governme...