abhisek

Dabbling into open source software supply chain security

github.com/safedep/vet

Posts

• The PostgreSQL Locking Trap That Killed Our Production API (and How We Fixed It)
  by abhisekon 6/19/25, 3:39 PMwith 0 comments
• Show HN: Xbom – Generate AI and SaaS-Aware SBOMs from Code Using Static Analysis
  by abhisekon 6/17/25, 5:12 PMwith 0 comments
• Vet MCP: Software Composition Analysis for AI Code Editors
  by abhisekon 6/6/25, 3:27 PMwith 0 comments
• Catching the Silent Threat: How Dynamic Analysis Revealed an NPM Attack Chain
  by abhisekon 5/31/25, 7:50 PMwith 0 comments
• Kubernetes Limits Links to Third Party Projects
  by abhisekon 5/26/25, 1:45 AMwith 0 comments
• Sneaky Malware Hidden in Transitive Dependency of ESLint-config-Airbnb-compat
  by abhisekon 5/16/25, 6:36 PMwith 0 comments
• PMG: Wraps Package Managers to Prevent Installation of Malicious OSS Packages
  by abhisekon 5/15/25, 4:07 PMwith 0 comments
• Why Build Software Frameworks
  by abhisekon 5/11/25, 6:42 PMwith 0 comments
• AI Agents Are Here. So Are the Threats
  by abhisekon 5/5/25, 5:03 PMwith 0 comments
• Dynamic Malware Analysis of Open Source Packages at Scale
  by abhisekon 5/5/25, 3:42 PMwith 0 comments