Learn

Learn about software supply chain security and Endor Labs.

Featured resources

Introducing AURI: Security Intelligence for AI Coding Agents and Developers
Blog

Introducing AURI: Security Intelligence for AI Coding Agents and Developers

Mar 3, 2026
How AI SAST Traced Data Flows to Uncover Six OpenClaw Vulnerabilities
Blog

How AI SAST Traced Data Flows to Uncover Six OpenClaw Vulnerabilities

Feb 18, 2026
Introducing Full Stack Reachability: Container Scanning That Actually Reduces Noise
Blog

Introducing Full Stack Reachability: Container Scanning That Actually Reduces Noise

Feb 11, 2026
Context Engineering for Application Security Whitepaper
Ebook/Report

Context Engineering for Application Security

Feb 10, 2026
Show filters
Topic
Medium
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
AI/ML
News
Intelligence and governance in the software supply chain with Endor Labs and Cloudsmith
Blog

Intelligence and governance in the software supply chain with Endor Labs and Cloudsmith

Mar 10, 2026
AI/ML
News
Introducing AURI: Security Intelligence for AI Coding Agents and Developers
Blog

Introducing AURI: Security Intelligence for AI Coding Agents and Developers

Mar 3, 2026
Security
News
Open Source
Blog

Remote Code Execution (RCE) in Ghost CMS (CVE-2026-29053): A Transitive Dependency Wreaks Havoc

Mar 2, 2026
Compliance & SBOM
EU Cyber Resilience Act
Ebook/Report

EU Cyber Resilience Act

Feb 27, 2026
Security
Open Source
Blog

CVE-2026-27959: Userinfo Host Header Injection in Koa

Feb 25, 2026
Opinion
Anthropic just validated that AppSec is the biggest opportunity in cybersecurity
Blog

Anthropic just validated that AppSec is the biggest opportunity in cybersecurity

Feb 24, 2026
Malware
Security
Blog

SANDWORM_MODE: Dissecting a Multi-Stage npm Supply Chain Attack

Feb 23, 2026
Security
Open Source
Blog

CVE-2026-25896: Entity Encoding Bypass in fast-xml-parser

Feb 21, 2026
Security
Open Source
AI SAST Finding: Path Traversal in OpenClaw via LLM Guardrail Bypass
Blog

AI SAST Finding: Path Traversal in OpenClaw via LLM Guardrail Bypass

Feb 19, 2026
Malware
Security
Open Source
Supply Chain Attack targeting Cline installs OpenClaw
Blog

Supply Chain Attack targeting Cline installs OpenClaw

Feb 18, 2026
Security
Open Source
How AI SAST Traced Data Flows to Uncover Six OpenClaw Vulnerabilities
Blog

How AI SAST Traced Data Flows to Uncover Six OpenClaw Vulnerabilities

Feb 18, 2026
Security
The Missing Layer: Why Container OS Libraries Need Reachability Analysis
Blog

The Missing Layer: Why Container OS Libraries Need Reachability Analysis

Feb 13, 2026
No items found.
Introducing Full Stack Reachability: Container Scanning That Actually Reduces Noise
Blog

Introducing Full Stack Reachability: Container Scanning That Actually Reduces Noise

Feb 11, 2026
No items found.
AI SAST in Action: Finding Real Vulnerabilities in OpenClaw
Blog

AI SAST in Action: Finding Real Vulnerabilities in OpenClaw

Feb 10, 2026
No items found.
Context Engineering for Application Security Whitepaper
Ebook/Report

Context Engineering for Application Security

Feb 10, 2026
AI/ML
First Party Code
Design Flaws in AI Generated Code
Blog

Design Flaws in AI Generated Code

Feb 9, 2026
AI/ML
Security
The Architectural Shift Behind the AI SDLC
Blog

The Architectural Shift Behind the AI SDLC

Feb 6, 2026
AI/ML
Test-First Prompting: Using TDD for Secure AI-Generated Code
Blog

Test-First Prompting: Using TDD for Secure AI-Generated Code

Feb 4, 2026
Security
News
Open Source
Blog

CVE-2026-25049 Expression Escape Vulnerability Leading to RCE in n8n

Feb 4, 2026
First Party Code
Static Analysis in the Age of AI, Part I: AI Coding Assistants
Blog

Static Analysis in the Age of AI, Part I: AI Coding Assistants

Feb 3, 2026
Developer Productivity
DevSecOps Tools
7 Snyk Alternatives for Engineering Teams in 2026
Blog

7 Snyk Alternatives for Engineering Teams in 2026

Feb 2, 2026

Want to stay in the loop?

Sign up for our newsletter.

Welcome to the resistance
Oops! Something went wrong while submitting the form.