pipebreach

Supply chain security research — packages, pipelines, dependencies.

2 posts

2 critical

ecosystems: npm · PyPI · openvsix · GitHub Actions · docker-hub

Latest

Incident Critical npm PyPI openvsix

TeamPCP Part II: Backdooring the AI Credentials Vault

TeamPCP's endgame: LiteLLM's PyPI wheel backdoored post-build, .pth system-wide persistence, and why AI gateways are a new class of supply chain target.

Daniel Malvaceda · Apr 4, 2026 · 22 min read

Incident Critical GitHub Actions docker-hub

TeamPCP Part I: Twenty Days of Silent Access From a Two-Minute PR

How a two-minute GitHub PR gave TeamPCP 18 days of silent access to Trivy's CI — Pwn Request, non-atomic rotation, and 82 poisoned Actions tags.

Daniel Malvaceda · Apr 3, 2026 · 17 min read

Research areas

⛓

Supply Chain

Package poisoning, dependency confusion, typosquatting, and build-time attacks across npm, PyPI, Cargo, and more.

⚙

CI/CD Attack Surface

GitHub Actions, Jenkins, CircleCI — runner credential theft, Pwn Request patterns, and pipeline backdoors.

◈

AI Security

Model supply chains, poisoned fine-tuning datasets, inference infrastructure, and prompt injection via packages.

⬡

AppSec & DevSecOps

Shift-left security architecture, SAST/DAST integration, secrets management, and developer security tooling.