SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
The Hacker News

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across ...
GitHub

A Python ETL pipeline that ingests, validates, and loads order data into PostgreSQL. Features pandas transformations, psycopg3 bulk loading, SQL analytics views, and data ...

The .env file contains database credentials and is excluded from git. See Configuration for available settings.