AsyncAPI Generator npm Attack: Miasma RAT via a Pwn Request
AI-BOM: How to Identify, Understand and Govern AI Supply Chain Risk
Latest news
Browse CVEs and advisories
How to
Our partner
Scaling AppSec Accuracy with a Two-Person Team
Scaling AppSec Without Scaling Headcount: How Rapyd Used Kodem to Shift from Volume to Impact
Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.