Shift Left, Get Hacked: Supply Chain Attacks Hit Devs

The Security Brief · S1E1 · 35 min

Show Notes

Supply chain attack timeline: March 2026
How compromised publishing credentials work
Automatic execution hooks (post-install scripts, .pth files)
How tools detected the malicious releases
Concrete mitigations for developer environments

Episode from DevSecOps Talks #97. Used with attribution.

← The Security Brief ← Previous Episode Next Episode →