CVE-2026-33634 - GitHub Advisory Database

github.com

Trivy ecosystem supply chain was briefly compromised

2 pages link to this URL

HeroDevs Blog | The LiteLLM Supply Chain Attack: What Happened, Why It Matters, and What to Do Next

herodevs.com Author Milecia McGregor SR Software Engineer Sep 10, 2011

A deep dive into the LiteLLM supply chain attack, how malicious PyPI packages exposed developer credentials, and the critical steps you need to take to secure your systems.

3 inbound links website en

AI-Augmented CI/CD: Shift Left Security Without Risk

Hugues Clouâtre - AI & Platform Engineering Hugues Clouâtre Dec 6, 2025

AI code review in CI/CD without prompt injection. Defensive patterns: three security tiers, isolated execution, no secrets in prompts.

1 inbound link article en ci-cddevopssecurityimplementation-guideai-engineering CC BY 4.0