Advertisement
SU
HIGH
Supply Chain
GitHub Repository Breach: 3,800 Repos Accessed via VS Code Extension
GitHub confirms a security incident where a malicious VS Code extension compromised an employee account, leading to the unauthorized access of 3,800 repos.
Runtime Rebel Intel
4 min read·May 20, 2026
SU
HIGH
Supply Chain
Supply Chain Attack: Bitwarden CLI npm Package Compromised
Analysis of the Bitwarden CLI npm package compromise (version 2023.12.0) leading to developer credential theft and supply chain risk. Includes mitigation.
Runtime Rebel Intel
5 min read·Apr 23, 2026
HIGH
Threat Intel
Microsoft Warns of Fake Next.js Repos Delivering In-Memory Malware
Microsoft warns developers of a coordinated campaign using malicious Next.js repositories disguised as job assessments to deliver in-memory malware.
Runtime Rebel Intel
3 min read·Feb 26, 2026
HIGH
Supply Chain
AI Code Generation Poses Supply Chain Risk to Developer Machines
Learn how AI-generated code, like from Anthropic's Claude, can introduce vulnerabilities and malicious payloads, compromising developer machines and software supply
Runtime Rebel Intel
5 min read·Feb 26, 2026