Back to Blog
Resources from
Jakub Pavlik
Ghost in the Script: Impersonating Google App Script projects for stealthy persistence
Npm provenance: bridging the missing security layer in JavaScript libraries
Exaforce’s response to the LottieFiles npm package compromise