Two different attackers poisoned popular open source tools • The Register

• Although executed by different attackers – Axios by North Korean-linked goons, and Trivy et al. by a loosely knit band of smash-and-grab miscreants called TeamPCP – both had similar end goals, a deep understanding of developer environments, and advanced social engineering skills.

Tasks

• BS paperwork
• Do a first pass on the pancake printer post and tie it back to agentic systems and “brickable” homes – started

SBIRs

• Less than 10k documents to go!
• 9:00 standup – done
• Struggled to get the new git environment running, but triumphed in the end. Wrote the method that should create the csv, but we’ll do that tomorrow when there is more time on the instance