Malicious code in coralogix-azure-serverless (npm)

The package coralogix-azure-serverless was found to contain malicious code...

Malicious code in cb-serverless-plugins (npm)

The package cb-serverless-plugins was found to contain malicious code...

Malicious code in serverless-plugin-rds-trigger (npm)

The package serverless-plugin-rds-trigger was found to contain malicious code...

Malicious code in serverless-slack-app (npm)

The package serverless-slack-app was found to contain malicious code...

MAL-2025-33009 Malicious code in serverless-slack-app (npm)

The package serverless-slack-app was found to contain malicious code...

Malicious code in serverless-router (npm)

The package serverless-router was found to contain malicious code...

MAL-2025-16675 Malicious code in cb-serverless-plugins (npm)

The package cb-serverless-plugins was found to contain malicious code...

MAL-2025-33008 Malicious code in serverless-router (npm)

The package serverless-router was found to contain malicious code...

MAL-2025-33007 Malicious code in serverless-plugin-rds-trigger (npm)

The package serverless-plugin-rds-trigger was found to contain malicious code...

MAL-2025-17559 Malicious code in coralogix-azure-serverless (npm)

The package coralogix-azure-serverless was found to contain malicious code...

Running Serverless Wasm Functions on the Edge with k3s and SpinKube

...

Building Serverless Apps with Spin and HTMX

A tutorial on building serverless applications using Fermyon Spin and htmx, demonstrating a shopping list app with a Rust back end and htmx-enhanced front end...

Serverless A2A with Spin

Learn how to build serverless agent-to-agent A2A apps with Spin...

sas-top-10

This is an educational guide for organizations adopting serverless architectures. The document, curated by top industry practitioners and security researchers, provides information on the top 10 security risks for serverless applications. The guide aims to assist organizations in building robust,...

Moderate: Red Hat Security Advisory: Release of OpenShift Serverless Logic 1.36.0 security update & enhancements

Release of OpenShift Serverless Logic 1.36.0 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

CVE-2025-23045

Computer Vision Annotation Tool CVAT is an interactive video and image annotation tool for computer vision. An attacker with an account on an affected CVAT instance is able to run arbitrary code in the context of the Nuclio function container. This vulnerability affects CVAT deployments that run...

CVE-2024-24753

Bref enable serverless PHP on AWS Lambda. When Bref is used in combination with an API Gateway with the v2 format, it does not handle multiple values headers. If PHP generates a response with two headers having the same key but different values only the latest one is kept. If an application relie...

CVE-2024-29186

Bref is an open-source project that helps users go serverless on Amazon Web Services with PHP. When Bref prior to version 2.1.17 is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is converted to a PSR7 object. During the conversion...

CVE-2024-24754

Bref enable serverless PHP on AWS Lambda. When Bref is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is converted to a PSR7 object. During the conversion process, if the request is a MultiPart, each part is parsed and its content...

CVE-2021-38384

Serverless Offline 8.0.0 returns a 403 HTTP status code for a route that has a trailing / character, which might cause a developer to implement incorrect access control, because the actual behavior within the Amazon AWS environment is a 200 HTTP status code i.e., possibly greater than expected...