As AppSec / ProdSec teams have more tools and processes to deploy and manage across the SDLC, maintaining CI/CD pipelines and pipeline integrations for security purposes is getting more complex and expensive. An emerging solution to this problem is to create independent pipelines for executing security tasks in CI/CD. Learn about common patterns and tradeoffs for security pipelines in this introductory webinar.
AURI: Security Intelligence for Agentic Software Development
AI agents have transformed how software gets built, but they’re introducing risk at a scale humans can’t review. This solution brief shows how AURI by Endor Labs embeds security directly into developer workflows, combining agentic reasoning with deterministic program analysis to enable teams to code without compromise.
Read more
Malicious 'Pyronut' Package Backdoors Telegram Bots with Remote Code Execution
The malicious Python package pyronut copies the entire project description and code of the popular pyrogram Telegram framework to pass itself off as the real thing, while silently installing a runtime backdoor that grants the attacker arbitrary Python and shell command execution on every victim's machine.
