š³ļøShould Vet offer built-in policies out-of-the-box?
So far, Vet lets you define whatās risky using CEL. But now weāre exploring defaults like `--policy builtin:critical-set`
Vote & share your thoughtsš
šgithub.com/safedep/vet/diā¦#DevSecOps#OSS
šNot all open source threats are the same.
We often confuse with vulnerable libraries with malicious ones but the difference is critical.
š Vulnerable = unintentional bugs, tracked & patchable
š£Malicious = intentional backdoors, harder to detect, devastating impact
Malware hiding in a fake eslint-config package?šØ
This npm package looked harmless until:
š¹Postinstall sets a .env with malicious proxy
š¹Transitive dep fetches payload via env var
š¹Remote server sends & runs base64 JS code
How dynamic analysis caughtšsafedep.io/digging-into-dā¦
š Announcing #GitLab CI/CD Component for #vet
ā”ļø Seamless integration as a CI Component
ā”ļø Available in GitLab CI Catalog
ā”ļø Policy as Code (CEL)
ā”ļø Protect against vulnerable and malicious "code"
š Try now
ā”ļø safedep.io/introducing-giā¦#devops#appsec#opensource#Security
101 Followers 2K FollowingLife is too short to worry about stupid things. Have fun. Fall in love. Regret nothing, and don't let people bring you down. Study, think, create, and grow.
27 Followers 258 FollowingData Scientist at Piramal Finance |
Tech Enthusiast š» | Book lover š | Innovating , coding and reading my way through life
848K Followers 379 FollowingThe settlement layer for the future of finance. Designed for developers to scale and earn. Eco @SonicEcosystem. Presence @SonicWorldHQ.
212K Followers 372 FollowingWe invest in founders and companies who are passionately building towards a blockchain-based economy.
Telegram Group: https://t.co/0hi9uYoz9p
267K Followers 1K FollowingFormer TV host turned #BGB hodler | World traveler āļø | CEO at @bitgetglobal š«” | Writing daily #crypto insights with tips on personal growth āļø | NFA & DYOR
4.6M Followers 791 FollowingWorld's leading cryptocurrency exchange and web3 company | Official Crypto Partner of @LaLigaEN in EASTERN, SEA and LATAM | Support @BitgetSupport
4.0M Followers 0 FollowingThe universal platform for crypto, blockchain apps, stablecoins & decentralized tech. An account about the Ethereum ecosystem maintained by @ethereumfndn.
14.9M Followers 580 FollowingThe worldās leading blockchain ecosystem and digital asset exchange | #Binance #BNB | Support: @BinanceHelpDesk | Posts are not directed towards UK users.
135K Followers 2K Following#TOKEN2049: The Worldās Largest Crypto Event. We bring together the leading voices in crypto.
š Singapore: 1-2 October 2025
š Dubai: 29-30 April 2026
1K Followers 107 FollowingBuilders and Creators DAO ⢠Events, Sessions and Community of Expert Creators and Builders ⢠Content & Growth ⢠TG Alpha ā https://t.co/lSIRI3uvVy
261K Followers 1K FollowingLife is too short to worry about stupid things. Have fun. Fall in love. Regret nothing, and don't let people bring you down. Study, think, create, and grow.
313 Followers 5 FollowingOXMIQ is rearchitecting GPUs from Atoms to Agents⢠for next-gen AI, gaming & graphics. IP that scales from silicon to zettascale. visit https://t.co/H4b1y93Xtl for more info
16K Followers 327 FollowingSecurity engineering manager by day, hacker by night. Sharing my ideas and learnings about RF, SDR, Hardware Security, Radar, and books. DF2HF
8K Followers 545 FollowingBacking mission-driven founders who are early in new areas @ada_cx @coinbase @etherfi @getjobber @outreach_io @shippo @uniswap
Run by @angelatytran & @bwertz
6K Followers 144 FollowingBuilding hard tech in India @ranoksys| CNC precision springs & wire forms manufacturing @ranoson_ | Sharing lessons from Indian manufacturing trenches
771 Followers 39 FollowingIndian Institute of Information Technology Bhopal, is an Institute of National Importance, established in the year 2017 by the Ministry of Education, GOI.