The Hacker News

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware

Packagist packages hid malicious package.json scripts, enabling Linux binary execution during installs and workflows.

Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard

Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard ...
GitHub

This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.

While assessing a web application, it is expected to enumerate information residing inside static files such as JavaScript or JSON resources. This tool tries to help with this "initial" recon phase, ...
GitHub

php / php-src: The PHP Interpreter

PHP is a popular general-purpose scripting language that is especially suited to web development. Fast, flexible and pragmatic, PHP powers everything from your blog to the most popular websites in the ...