Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...
GitHub

Cisco AI Agent Skills Security Scanner

A best-effort security scanner for AI Agent Skills that detects prompt injection, data exfiltration, and malicious code patterns. Combines pattern-based detection (YAML + YARA), LLM-as-a-judge, and ...
GitHub

Eclipse LSP4J

The p2 Update sites listed above (since 0.13.0) contain a japicmp report against the last released version to make it easier to identify API changes. The Eclipse LSP4J project uses Semantic Versioning ...