Open source always opens new doors!🚀 Career update: I have joined @safedepio as Software engineer and excited to learn about now supply chain security and contribute towards that. Checkout @safedepio's tool vet to prevent your code or project from malicious and vulnerable code

It was Balloon Day! Looking back at this year, it’s been full of opportunities, learnings, and amazing experiences. Joined the incredible team at @safedepio, working on real-world problems. We even had an amazing offsite Gave my first tech talk! The journey’s been great so far

It was Balloon Day! Looking back at this year, it’s been full of opportunities, learnings, and amazing experiences. Joined the incredible team at @safedepio, working on real-world problems. We even had an amazing offsite Gave my first tech talk! The journey’s been great so far

We got a chance to give @safedepio a new home — and reimagine what trust looks like in a developer-first world. Also special because @virajux , @chetna_ranaa , and I the OG crew behind Olvy’s brand, GTM, and product design teamed up again to build the next generation of design

Open for contribution for #Hacktoberfest Blocking bandwidth this month specifically to help first time contributors to get started. DM open. About vet: OSS supply chain security tool with SCA, Policy as Code, Code Analysis & Malicious Package scanning. https://t.co/SZavyaJRsO

🚀 Hacktoberfest is HERE and we're ready! Join us in making vet even more awesome! Whether you're a first-timer or a seasoned pro, we'd LOVE your contributions! 💜 Let's build something amazing together! ✨ https://t.co/7TBhBhQVjS

New nfo is in market #JioBlackrock. Looks interesting. Who else taking their chances😎 since its AI powered

If you are looking for valuable contributions in your open source projects..... hacktoberfest is not more the right event for that I guess.

GitHub App to the rescue ➡️ https://t.co/ZABFFKTM83 How it works? 1. Capture diff on PR 2. Identifies changed dependencies in PR 3. Uses SafeDep API to scan for malicious code 4. Flag malicious packages with code evidence 5. Works out of the box 🚀

Weekend spent well... Had a great time in IndiaFOSS

See you at IndiaFOSS Bengaluru 😃

🚨 Another supply chain attack against npm is in progress. At least 652 repositories are likely impacted. One of the payload appears to be making a copy of private repositories public with description: "Shai-Hulud Repository." You can search for "Shai-Hulud Repository." in

* Guarding the Gates: Secure Open Source Library Consumption with vet by Sudhanshu Dasgupta: Discover a tool to automate open-source risk detection and governance.

Major software supply chain attack in progress against multiple npm packages with millions of weekly downloads. Including ansi-regex, supports-color, has-ansi, simple-swizzle, color-name, is-arrayish, slice-ansi Code injection example: https://t.co/5kdBvpYln1 Scan your npm

Excited to share that I will be speaking in IndiaFOSS this year where i will be talking about vet and supply chain security. Also i will be attending IndiaFOSS maintainer summit, so excited to meet other open source maintainers out there. See you there, Bengaluru

Excited to share that I will be speaking in IndiaFOSS this year where i will be talking about vet and supply chain security. Also i will be attending IndiaFOSS maintainer summit, so excited to meet other open source maintainers out there. See you there, Bengaluru

To all job seekers. Now days the most effective of applying to a job or getting referral is cold emailing. So put some time and efforts in writing those even its hundreds of them in a day. Your first impression could be last impression. Use AI tools but not only AI tools🧠

Unpopular opinion: We always fight/protest in wrong direction. Instead fighting for ensuring that any decisions to get succeeded, we fight against that. If out of every 100 people, 50 comes to deny any decisions of SC, god knows what will happen

If such stupids give this much efforts to help in ensuring that proper shelters are been made, they get food and all then we as a country would have been in another level. What happens to these so called animal lovers when everyday a dog/cow suffers in accidents in highways.

Great repo if want to know or learn about the engineering side of LLMs. With curated resources on training, fine-tuning, serving, evaluation, and tooling. https://t.co/AnAiJJEACF

We are investigating a sophisticated payload delivered through typosquatting attack targeting TensorFlow.js developers. It contains highly obfuscated Javascript payload which in turn downloads and executes PE32+ binary as stage. More details: https://t.co/roZuoi6gKr