@Snyk
Automatically find and fix vulnerabilities in your code, open source, and containers. Sign up for free at https://snyk.co/hashnode
Apr 11 · 8 min read · Anthropic just open-sourced vulnerability discovery at scale. Now what? A few weeks ago, Anthropic launched Glasswing, a $100 million initiative to use AI to identify vulnerabilities at scale. Around the same time, they introduced Claude Mythos, a sy...
Join discussionApr 8 · 4 min read · In November, we shared our vision for the Future of Snyk Container, outlining a fundamental shift in how teams secure the modern container lifecycle. We promised a future where security doesn’t just “scan” but scales effortlessly with the speed of th...
Join discussion
Apr 1 · 9 min read · On March 31, 2026, two malicious versions of axios, the enormously popular JavaScript HTTP client with over 100 million weekly downloads, were briefly published to npm via a compromised maintainer account. The packages contained a hidden dependency t...
Join discussion
Mar 19 · 15 min read · This is the prompt – the whole thing: You are a security reviewer for pull requests. Goal: Detect and clearly explain real vulnerabilities introduced or exposed by this PR. Review only added or modified code unless unchanged code is required to prove...
Join discussion
Mar 6 · 8 min read · AI coding assistants are quietly resurrecting millions of abandoned open source packages. For the last decade, developers relied on a simple heuristic for open source security: Prevalence \= Trust. If a package was downloaded millions of times a week...
Join discussion