Skip to main content

Categories

Subscribe to Feed

Latest Posts

Showing 0 Items

News

ctrl/tinycolor and 40+ NPM Packages Compromised

The popular @ctrl/tinycolor package with over 2 million weekly downloads has been compromised alongside 40+ other NPM packages in a sophisticated supply chain attack. The malware self-propagates across maintainer packages, harvests AWS/GCP/Azure credentials using TruffleHog, and establishes persistence through GitHub Actions backdoors - representing a major escalation in NPM ecosystem threats.

Ashish Kurmi

September 15, 2025

Read
News

8,000 Strong: Harden-Runner's Growing Impact on CI/CD Security

StepSecurity’s Harden-Runner protects 8,000+ repositories with EDR-style runtime monitoring for CI/CD pipelines, stopping supply chain attacks and securing GitHub Actions.

Eromosele Akhigbe

September 11, 2025

Read
Resources

Securing Google Gemini in GitHub Actions with Harden-Runner

Learn how to secure Google Gemini in GitHub Actions with Harden-Runner, combining observability with runtime monitoring for CI/CD security

Ashish Kurmi

September 9, 2025

Read
News

20+ Popular NPM Packages Compromised (Chalk, Debug, Strip-ANSI, Color-Convert, Wrap-ANSI...)

Massive NPM supply chain attack targets cryptocurrency users through compromised maintainer account - affecting packages downloaded billions of times weekly including debug, chalk, ansi-styles, color-convert, strip-ansi and 15+ other critical JavaScript packages. Malicious code injected to steal cryptocurrency wallets and redirect blockchain transactions.

Varun Sharma

September 8, 2025

Read
News

GhostAction Campaign: Over 3,000 Secrets Stolen Through Malicious GitHub Workflows

GitGuardian researchers discover massive supply chain attack affecting 817 repositories across 327 GitHub users. Malicious workflows exfiltrated 3,325 secrets including PyPI, npm, and DockerHub tokens through compromised developer accounts.

Ashish Kurmi

September 5, 2025

Read
News

Introducing the NPM Package Cooldown Check

We’re excited to announce the release of our NPM Package Cooldown Check, which helps teams block newly released, potentially compromised dependencies, while still allowing emergency fixes and integrating seamlessly into GitHub workflows

Sai Likhith

September 5, 2025

Read
News

How StepSecurity Harden Runner Detected Unexpected Microsoft Defender Installation on GitHub-hosted Ubuntu Runners

Microsoft Defender was unexpectedly installed on multiple workflow runs from mid-July through mid-August, causing abnormal network traffic. StepSecurity Harden Runner detected this infrastructure anomaly within hours, and GitHub Support has since resolved the issue

Varun Sharma

September 2, 2025

Read
News

Supply Chain Security Alert: Popular Nx Build System Package Compromised with Data-Stealing Malware

Nx package on npm hijacked to steal cryptocurrency wallets, GitHub/npm tokens, SSH keys, and environment secrets - and is the first documented case of malware weaponizing AI CLI tools for reconnaissance and data exfiltration.

Ashish Kurmi

August 27, 2025

Read

There are no blog posts matching your criteria at this time.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
StepSecurity | Home
Request a Demo
Start Free
HomeAbout
DocsPricing
Contact UsProduct Tour
© 2025 All rights reserved
Privacy Policy
Terms of Service