#packagist — Tagged Stories

Every story in the WeSearch catalog tagged with #packagist, chronological, with view counts. Subscribe to the per-tag RSS feed to follow this topic in your reader of choice.

2 stories tagged with #packagist, in publish-time order across the WeSearch catalog. Tag pages update as new stories ingest.

⌘ RSS feed for this tag → or search "Packagist"

RELATED TAGS

#supply-chain-security1 #malicious-packages1 #ci-cd-security1 #open-source-vulnerabilities1 #package-registries1 #socket1 #intercom1 #rubygems1 #go-modules1 #npm1

SOCKET

Ruby Gems and Go Modules Impersonate Dev Tools to Steal Secrets and Poison CI

GitHub account BufferZoneCorp published sleeper packages that later added credential theft, GitHub Actions tampering, fake go wrappers, and SSH persis...…

5 views · Fri, 01 May 2026 03:05:33 GMT

#supply chain security #malicious packages #ci/cd security

SEMGREP

Mini Shai-Hulud in Intercom Package Spreads to Packagist Using Composer Plugin

intercom/intercom-php 5.0.2 was compromised and converted into a Composer plugin that exfiltrates credentials at install time, extending the Mini Shai-Hulud campaign to PHP.…

4 views · Fri, 01 May 2026 00:34:17 GMT

Browse more

All tags Search "Packagist" RSS feed World US Technology Markets

Packagist coverage.

Ruby Gems and Go Modules Impersonate Dev Tools to Steal Secrets and Poison CI

Mini Shai-Hulud in Intercom Package Spreads to Packagist Using Composer Plugin

Browse more