ci-cd 17

• We hardened zizmor's GitHub Actions static analyzer May 22, 2026
• Shai-Hulud Is Back, and This Time It Ate the Whole Ecosystem May 21, 2026
• Reduce CVE noise with OpenVEX assessments in Datadog May 20, 2026
• durabletask: TeamPCP's Latest PyPi Compromise May 19, 2026
• Living Off the Pipeline: Defending Against CI/CD Subversion May 15, 2026
• The Convergence of Cloud Secrets & AI Risk May 13, 2026
• Shai-Hulud Goes Open Source May 13, 2026
• Composer vulnerability leaks GitHub tokens, threatens PHP supply chain May 13, 2026
• Mini Shai-Hulud Strikes Again: TanStack + more npm Packages Compromised May 12, 2026
• Copy Fail: What You Need to Know About the Most Severe Linux Threat in Years May 5, 2026
• From Code to Pipeline: Wiz Code Now Secures Your Build Environment Apr 21, 2026
• Spotting CI/CD misconfigurations before the bots do: Securing GitHub Actions with Datadog IaC Security Apr 17, 2026
• The case for dependency cooldowns in a post-axios world Apr 17, 2026
• Primer on GitHub Actions Security - Threat Model, Attacks and Defenses (Part 1/2) Apr 15, 2026
• CI/CD security: How to secure your GitHub ecosystem Apr 9, 2026
• CI/CD security: threat modeling using a MITRE-style threat matrix Apr 9, 2026
• Six Accounts, One Actor: Inside the prt-scan Supply Chain Campaign Apr 4, 2026