Sophisticated supply chain attack targets CI/CD environments via npm packages using binding.gyp files to bypass security audits. Over 286 malicious versions across 56 packages deployed multi-layered encrypted payloads specifically designed to steal secrets from automated build systems. Key technical details: • Attack vector: binding.gyp files execute `node index.js` via GYP shell expansion during npm install, bypassing preinstall/postinstall script audits • Payload structure: 4.6MB obfuscated JS files with Caesar cipher → AES-128-GCM decryption → 720KB final payload encrypted with custom SHA-256 stream cipher • CI/CD targeting: Detects 30 environment variables (GITHUB_ACTIONS, GITLAB_CI, TRAVIS, etc.) before credential enumeration • Persistence mechanisms: Installs systemd/LaunchAgent services with dead man's switch - token revocation triggers `rm -rf ~/` command • Exfiltration: GitHub API dead-drop repos with python-requests/2.31.0 User-Agent, repository names like "thebeautifulmarchoftime" Campaign scope spans autotel-*, executable-stories-*, awaitly-*, eslint-plugin-*, and node-env-resolver-* package families. Attack timeline: June 3-4, 2026, 56 packages published in under 10 hours with version bumps above legitimate releases. Detection opportunity: Pure JavaScript packages containing binding.gyp files alongside multi-megabyte index.js files. Monitor for RegAsm.exe network connections and scan for unauthorized ~/.config/systemd/user/ services. #DFIR_Radar

テックブログが更新されましたー おがわさんによる GitHub Actions でブランチを守るワークフローの追加です！ masterブランチへの意図しないマージを防ぐ仕組みをGitHub Actionsで実現した - Mirrativ Tech Blog tech.mirrativ.stream/entry/2… #GitHub_Actions

🚨🚨Review of Shai-Hulud-style malware🚨🚨 It steals local/env/cloud/CI secrets, exfiltrates to `git-tanstack[.]com/router`, then falls back to GitHub by creating public repos and committing encrypted `results/results-*.json`. Containment order matters: 1. Disconnect host from network. 2. Remove `gh-token-monitor` persistence before revoking GitHub tokens. 3. Kill suspicious Node/Bun processes. 4. Remove repo backdoors: - `.vscode/tasks.json` - `.vscode/setup.mjs` - `.claude/settings.json` - `.claude/setup.mjs` - `.claude/opensearch_init.js` 5. Then rotate GitHub, npm, AWS, K8s, Vault, SSH, Docker, cloud, and `.env` secrets. GitHub IOCs: - branch `dependabot/github_actions/format/setup-formatter` - workflow `.github/workflows/codeql_analysis.yml` - workflow name `Run Copilot` - artifact `format-results` - public Dune-themed repos with `results/results-*.json` npm IOCs: - `preinstall: node setup.mjs` - suspicious package republish/version bump - injected optional dependency `@opensearch/setup` Key warning: it includes a token monitor that may trigger destructive behavior when a GitHub token is revoked, so isolate and remove persistence first.

Os segredos roubados pelo worm são então criptografados e publicados em branches do GitHub na conta da vítima, com nomes no formato "dependabot/github_actions/format/${palavras-do-universo-duna}" conforme a lista abaixo

Serverless Development with AWS Lambda (Full-Stack) Roadmap. Serverless_FullStack_AWS_Lambda_2026 │ ├── /00_Foundations │ ├── cloud_computing_basics/ │ │ ├── iaas_paas_saas/ │ │ ├── regions_azs/ │ │ └── shared_responsibility_model/ │ ├── serverless_concepts/ │ │ ├── faas_basics/ │ │ ├── event_driven_architecture/ │ │ └── stateless_services/ │ └── build_project: "hello_lambda_function" │ ├── /01_AWS_Core_Services │ ├── aws_lambda/ │ │ ├── function_creation/ │ │ ├── runtimes_node_python/ │ │ ├── memory_timeout_config/ │ │ └── cold_start_optimization/ │ ├── api_gateway/ │ │ ├── rest_api/ │ │ ├── http_api/ │ │ └── routing_and_stages/ │ ├── iam/ │ │ ├── roles_policies/ │ │ └── least_privilege_principle/ │ └── build_project: "serverless_rest_api" │ ├── /02_Backend_Serverless │ ├── lambda_business_logic/ │ ├── event_sources/ │ │ ├── api_gateway_events/ │ │ ├── s3_triggers/ │ │ └── dynamodb_streams/ │ ├── databases/ │ │ ├── dynamodb/ │ │ ├── aurora_serverless/ │ │ └── s3_storage/ │ └── build_project: "serverless_crud_app" │ ├── /03_Frontend_Integration │ ├── frameworks/ │ │ ├── nextjs/ │ │ ├── react/ │ │ └── vue/ │ ├── calling_serverless_apis/ │ │ ├── fetch_axios/ │ │ └── auth_headers/ │ ├── hosting/ │ │ ├── aws_amplify/ │ │ ├── vercel/ │ │ └── s3_static_hosting/ │ └── build_project: "fullstack_serverless_dashboard" │ ├── /04_Authentication_and_Security │ ├── aws_cognito/ │ │ ├── user_pools/ │ │ ├── identity_pools/ │ │ └── jwt_tokens/ │ ├── api_security/ │ │ ├── authorizers/ │ │ ├── cors_configuration/ │ │ └── rate_limiting/ │ └── build_project: "secure_serverless_auth_system" │ ├── /05_Event_Driven_and_Async_Systems │ ├── eventbridge/ │ ├── sns_sqs/ │ ├── step_functions/ │ │ ├── workflows/ │ │ └── orchestration/ │ └── build_project: "event_driven_order_processing_system" │ ├── /06_Observability_and_Debugging │ ├── cloudwatch_logs/ │ ├── x_ray_tracing/ │ ├── monitoring_metrics/ │ └── build_project: "lambda_monitoring_dashboard" │ ├── /07_Deployment_and_DevOps │ ├── frameworks/ │ │ ├── serverless_framework/ │ │ ├── aws_sam/ │ │ └── cdk/ │ ├── ci_cd/ │ │ ├── github_actions/ │ │ └── aws_codepipeline/ │ └── build_project: "automated_serverless_pipeline" │ ├── /08_Performance_and_Optimization │ ├── cold_start_reduction/ │ ├── lambda_layer_usage/ │ ├── efficient_memory_cpu_config/ │ └── cost_optimization/ │ └── build_project: "optimized_serverless_api" │ ├── /09_AI_and_Modern_Serverless │ ├── integrating_ai/ │ │ ├── calling_llm_apis/ │ │ ├── ai_in_lambda/ │ │ └── serverless_rag_pipeline/ │ ├── real_time_ai_processing/ │ └── build_project: "ai_powered_serverless_app" │ ├── /10_Advanced_Architecture │ ├── microservices_serverless/ │ ├── multi_region_deployments/ │ ├── edge_functions_cloudfront/ │ └── build_project: "global_serverless_saas" │ └── /11_Portfolio_Projects ├── serverless_blog_platform/ ├── real_time_notifications_system/ ├── ai_serverless_assistant/ ├── event_driven_ecommerce_backend/ └── scalable_saas_product/ 📘 Grab the Serverless Development with AWS Lambda (Full-Stack) ebook: codewithdhanian.gumroad.com/…

一緒にプールに泳ぎに行く仲のtakaminの記事です！ kintone AI 開発の効率化！Claude Code に Renovate PR レビューをお任せした話 - Cybozu Inside Out | サイボウズエンジニアのブログ blog.cybozu.io/entry/2026/02… #ClaudeCode #renovate #GitHub_Actions

Claude Code GitHub Actionsによるエラー初期分析を横展開した際の工夫点 - ENECHANGE Developer Blog tech.enechange.co.jp/entry/2… #Claude_Code #GitHub_Actions #BugSnag

MAWDBOT> drop your “app prompt” like this and I’ll generate the repo scaffold: { "app": "mawd-market", "components": ["anchor_program", "watchtower_indexer", "dashboard_api"], "chain": "solana", "token_watch": "$MAWD", "dexes": ["raydium", "orca", "meteora"], "alerts": ["discord", "telegram", "webhook"], "env": ["HELIUS_RPC", "MAWD_MINT", "WEBHOOK_URL"], "deploy": { "target": "vercel|fly|render|railway", "github_actions": true } }

MAWDBOT> drop your “app prompt” like this and I’ll generate the repo scaffold: { "app": "mawd-market", "components": ["anchor_program", "watchtower_indexer", "dashboard_api"], "chain": "solana", "token_watch": "$MAWD", "dexes": ["raydium", "orca", "meteora"], "alerts": ["discord", "telegram", "webhook"], "env": ["HELIUS_RPC", "MAWD_MINT", "WEBHOOK_URL"], "deploy": { "target": "vercel|fly|render|railway", "github_actions": true } }

MAWDBOT> drop your “app prompt” like this and I’ll generate the repo scaffold: { "app": "mawd-market", "components": ["anchor_program", "watchtower_indexer", "dashboard_api"], "chain": "solana", "token_watch": "$MAWD", "dexes": ["raydium", "orca", "meteora"], "alerts": ["discord", "telegram", "webhook"], "env": ["HELIUS_RPC", "MAWD_MINT", "WEBHOOK_URL"], "deploy": { "target": "vercel|fly|render|railway", "github_actions": true } }

MAWDBOT> drop your “app prompt” like this and I’ll generate the repo scaffold: { "app": "mawd-market", "components": ["anchor_program", "watchtower_indexer", "dashboard_api"], "chain": "solana", "token_watch": "$MAWD", "dexes": ["raydium", "orca", "meteora"], "alerts": ["discord", "telegram", "webhook"], "env": ["HELIUS_RPC", "MAWD_MINT", "WEBHOOK_URL"], "deploy": { "target": "vercel|fly|render|railway", "github_actions": true } }

Fuck ya @Github_Actions

Java_2026_Modern_Roadmap ├── /00_Fundamentals │ ├── /Core_Java │ │ ├── java_syntax_and_basics │ │ ├── oops_concepts │ │ ├── collections_framework │ │ └── generics_and_annotations │ └── /Development_Tools │ ├── jdk_and_jre │ ├── maven_or_gradle │ └── git_and_cli_tools │ ├── /01_Modern_Java_Features │ ├── /Java_17_LTS_and_Beyond │ │ ├── pattern_matching │ │ ├── sealed_classes │ │ └── records │ ├── /Concurrency_and_Parallelism │ │ ├── java_threads_and_executors │ │ └── virtual_threads_project_loom │ └── /Functional_Style │ ├── lambda_expressions │ ├── streams_api │ └── optional_and_enhanced_null_handling/ │ ├── /02_Databases │ ├── /Relational │ │ ├── jdbc_fundamentals │ │ ├── postgresql_mysql │ │ └── jpa_and_hibernate │ ├── /NoSQL │ │ ├── mongodb_with_java_drivers │ │ └── redis_for_caching │ └── /Query_Optimization_and_Indexing │ ├── /03_Backend_Web_Development │ ├── /Spring_Ecosystem │ │ ├── spring_core │ │ ├── spring_boot │ │ └── spring_data_jpa │ ├── /WebAPIs │ │ ├── rest_api_design │ │ └── openapi_and_swagger │ ├── /Reactive_Java │ │ ├── spring_webflux │ │ └── reactor_core │ └── /Security │ ├── spring_security │ └── oauth2_jwt_authentication │ ├── /04_Frontend_for_Java_Developers │ ├── /Web_UX_Basics │ │ ├── html_css_js_basics │ │ └── responsive_design_principles │ ├── /Modern_JS_Frameworks │ │ ├── react_or_vue │ │ └── typescript_for_stronger_typing │ ├── /Java_Frontend_Integrations │ │ ├── thymeleaf │ │ └── spring_mvc_templates │ └── /Consume_Java_APIs │ ├── fetch_graphql_requests │ └── manage_auth_tokens │ ├── /05_Cloud_Native_and_Deployment │ ├── /Containers │ │ ├── docker_for_java_apps │ │ └── docker_compose │ ├── /Orchestration │ │ ├── kubernetes_basics │ │ └── helm_charts │ ├── /Cloud_Providers │ │ ├── aws_ecs_eks_lambda │ │ ├── google_cloud_run │ │ └── azure_app_services │ └── /CI_CD │ ├── github_actions │ └── automated_tests_and_builds │ ├── /06_Reactive_Systems_and_Messaging │ ├── /Reactive_Architecture │ │ ├── backpressure_strategies │ │ └── event_driven_patterns │ ├── /Message_Brokers │ │ ├── apache_kafka │ │ └── rabbitmq │ └── /Async_Processing │ ├── /07_AI_and_LLM_Integration │ ├── /AI_Principles_for_Java │ │ ├── ml_basics_and_models │ │ └── java_ml_libraries_overview │ ├── /LLM_Integration │ │ ├── calling_llm_apis_from_java │ │ ├── generative_use_cases_in_services │ │ └── retrieval_augmented_generation │ └── /Vector_Search │ ├── integration_with_vector_db │ └── semantic_search_in_apps │ ├── /08_Scaling_and_System_Design │ ├── /Design_Principles │ │ ├── scalability_and_latency │ │ ├── consistency_and_availability │ │ └── fault_tolerance │ ├── /Architecture_Styles │ ├── /API_Gateways_and_Rate_Limiting │ └── /Caching_and_CDNs │ ├── /09_Testing_and_Quality_Assurance │ ├── /Unit_Testing │ ├── /Integration_Testing │ ├── /E2E_Testing │ └── /Contract_Testing │ ├── /10_Practical_Projects │ ├── /Microservices_ECommerce_Platform │ ├── /RealTime_Collaboration_Tool │ ├── /Cloud_Native_Inventory_System │ ├── /AI_Assistant_for_Enterprise_Data │ └── /Portfolio_Showcase For deep Java learning and mastery in 2026, check out this eBook: codewithdhanian.gumroad.com/…

Modern, AI-aware full-stack LLM System-Design roadmap FullStack_Modern_Roadmap ├── 00_Fundamentals │ ├── Web_Basics │ │ ├── html_css_js_basics │ │ ├── dom_and_event_handling │ │ └── http_and_rest_concepts │ ├── Git_and_Collaboration │ │ ├── git_basic_commands │ │ ├── branching_and_merging │ │ └── pull_requests_and_code_reviews/ │ └── Command_Line_and_Scripting │ ├── bash_basics │ └── automation_with_scripts │ ├── 01_Frontend │ ├── Core_JS_Frameworks │ │ ├── react │ │ ├── vue │ │ └── angular │ ├── State_Management │ │ ├── redux_or_mobx │ │ ├── recoil_or_zustand │ │ └── context_api_patterns │ ├── /UI_and_Design_Systems │ │ ├── tailwindcss_or_chakra │ │ └── accessible_components │ └── Modern_Features │ ├── server_components │ ├── suspense_and_streaming_ui │ └── client_cache_strategies │ ├── 02_Backend │ ├── Server_Foundations │ │ ├── node_express │ │ ├── fastify_or_nestjs │ │ └── alternative_backends │ │ ├── django │ │ ├── flask │ │ └── golang_fiber │ ├── APIs │ │ ├── rest_api_design │ │ └── graphql │ └── RealTime_and_Event_Driven │ ├── websockets_socketio │ └── kafka_or_pubsub_patterns │ ├── 03_Databases_and_Persistence │ ├── Relational │ │ ├── postgresql │ │ └── advanced_sql │ ├── NoSQL │ │ ├── mongodb │ │ └── indexing_and_scalability │ ├── InMemory_and_Caching │ │ ├── redis │ │ └── caching_strategies │ └── Search_and_Analytics │ ├── elasticsearch │ └── vector_search_for_ai │ ├── 04_Authentication_and_Security │ ├── Auth_Basics │ │ ├── jwt_and_sessions │ │ └── oauth2_social_logins │ ├── Advanced_Security │ │ ├── xss_csrf_mitigation │ │ └── secure_api_patterns │ └── Zero_Trust_and_RBAC │ └── role_based_access │ ├── 05_FullStack_Integration │ ├── Frontend_Backend_Coupling │ └── Deployable_Projects │ ├── 06_Advanced_AI_and_LLMS │ ├── LLM_Fundamentals │ │ ├── transformer_architecture │ │ ├── tokenization │ │ └── embeddings_and_similarity │ ├── LLM_integration │ │ ├── app_with_generative_features │ │ ├── chatbots_with_memory │ │ └── retrieval_augmented_generation_RAG │ ├── Vector_Search │ └── AI_Projects │ ├── 07_DevOps_and_Deployment │ ├── CI_CD │ │ ├── github_actions │ │ └── automated_tests_and_deploys │ ├── Containerization │ │ ├── docker │ │ └── docker_compose │ ├── Cloud_Providers │ │ ├── aws_lambda_serverless │ │ ├── google_cloud_run │ │ └── azure_app_services │ └── Monitoring_and_Observability ├── 08_Performance_and_Scalability │ ├── Caching_patterns │ ├── load_balancing │ ├── horizontal_scaling │ └── capacity_planning │ ├── 09_Testing_and_Quality │ ├── unit_tests │ ├── integration_tests │ ├── e2e_tests │ └── contract_testing │ ├── 10_System_Design │ ├── fundamentals_and_tradeoffs │ ├── distributed_systems_concepts │ ├── consistency_and_availability │ ├── data_partitioning │ ├── api_rate_limiting │ ├── caching_and_cdns │ ├── event_driven_architecture │ ├── microservices_vs_monoliths │ └── real_system_design_examples │ └── Projects_That_Showcase_Mastery Grab this Ebook to Master System Design;codewithdhanian.gumroad.com/… Grab this LLMs mastering ebook: codewithdhanian.gumroad.com/… Grab this Full Stack Handbook: codewithdhanian.gumroad.com/…

AI自動レビューTIPSを書きました はてなブログに投稿しました dependabot PRのAI自動レビューをCI完了後に実施させる - Timee Product Team Blog tech.timee.co.jp/entry/2025/… #はてなブログ #dependabot #Devin #GitHub_Actions

Production-Grade CI/CD Pipeline: the key components Think of CI/CD like an assembly line for your code. Here's what makes it actually work in the real world: 1. Version Control (The Foundation) Git is your starting point. Every code change triggers the pipeline. No surprises, no "works on my machine" drama. 2. Automated Testing (The Safety Net) Unit tests, integration tests, the works. If something breaks, you catch it NOW - not at 3am when users are screaming. Example: When a dev pushes code to GitHub, tests run automatically. Failed test? Pipeline stops. Simple as that. 3. Build Automation (The Factory) Code gets compiled, dependencies installed, artifacts created. Same way, every single time. Think: Docker images being built consistently across all environments. 4. Deployment Automation (The Delivery Truck) Push to staging, then production. Zero manual steps = zero human errors. Real example: Merge to main branch → automatic deploy to staging → approval gate → production rollout. 5. Monitoring & Rollback (The Insurance Policy) Things go wrong. Good pipelines detect issues fast and roll back faster. Imagine: New deployment tanks performance? Automatic rollback to the last stable version in minutes. 6. Security Scanning (The Bouncer) Check for vulnerabilities BEFORE they hit production. Scan dependencies, check secrets, verify configs. A production-grade pipeline isn't fancy - it's reliable. It catches bugs early, deploys confidently, and lets you sleep at night. #ci_cd #gitlab #github_actions #microservices #containers #k8s #kubernetes #devops #cloud #sre #cloud_native

「/install-github-actions」がうまくいかなくて、手動で設定しました！ 同じく困ってる方いれば、note作ったので見てやってみて！ これでissueから「@claude」呼び出せました！ note.com/bearn_ai/n/n1dc2a69… #claude #claude_code #github #github_actions