The Hacker News

Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft

Sleeper packages in Ruby and Go steal credentials and alter CI workflows, leading to persistent access and data exfiltration.
Bleeping Computer

Trivy supply-chain attack spreads to Docker, GitHub repos

The TeamPCP hackers behind the Trivy supply-chain attack continued to target Aqua Security, pushing malicious Docker images and hijacking the company’s GitHub organization to tamper with dozens of ...
GitHub

Git-Tutor: Learn Git Interactively with Docker

Git-Tutor is an interactive command-line tool designed to help you learn Git through hands-on exercises. With Git-Tutor, you can practice Git commands safely in isolated Docker environments. This tool ...
GitHub

jonmatum/terraform-docker-example

terraform-docker-modules/ ├── modules/ │ ├── docker-container/ # Docker container module │ └── ecs-fargate/ # AWS ECS Fargate module ├── examples/ │ ├── 01-basic-docker/ # Basic Docker example │ ├── ...
The Hacker News

GitHub Mandates 2FA and Short-Lived Tokens to Strengthen npm Supply Chain Security

GitHub on Monday announced that it will be changing its authentication and publishing options "in the near future" in response to a recent wave of supply chain attacks targeting the npm ecosystem, ...
Automation

HMS Networks releases Ewon Connector Module for Ignition 8

The solution leverages Ewon’s Talk2M platform to create a secure link between the Ignition server and the target machine allowing machines to be located anywhere world-wide. September 18, 2019 - HMS ...
Automation

Inductive Automation releases Ignition 8 update and Ignition Perspective Module

Ignition by Inductive Automation is an industrial application platform with tools for building solutions in human-machine interface (HMI), supervisory control and data acquisition (SCADA), and the ...