Mend.io Blog

Npm user flooding registry with fake font packages

Tom Abai Dec 16, 2025

NPM User Flooding Registry with Fake Font Packages

Filter & Search

Npm user flooding registry with fake font packages - blog post npm fake font packages

NPM User Flooding Registry with Fake Font Packages

Tom Abai Dec 16, 2025

Malicious Packages

Analysis of an npm account flooding the registry with malformed font packages.

Npm user flooding registry with fake font packages - blog critical cve 2025 55182

From Zero to RCE: How a Single HTTP Request Compromises React and Next.js Applications

Tom Abai Dec 4, 2025

Malicious Packages

Discover a critical security flaw that enables remote code execution in React Server Components.

Npm user flooding registry with fake font packages - mend wiz integration graphic

Mend.io + Wiz: A New Code-to-Cloud Integration for Accurate, Context-Driven Risk Prioritization

Tiffany Jennings Dec 2, 2025

Application Security

See how Mend.io and Wiz deliver true code-to-cloud visibility.

Npm user flooding registry with fake font packages - blog cover top 7 ast providers post 1

Best Application Security Testing Providers: Top 7 in 2025

Tiffany Jennings Dec 1, 2025

Application Security

Discover how AST providers help teams find and fix vulnerabilities.

Npm user flooding registry with fake font packages - blog zero day shai hulud v2

Shai-Hulud: The Second Coming

Tom Abai Nov 24, 2025

Malicious Packages

See how the latest Shai-Hulud attack works.

Npm user flooding registry with fake font packages - best sast tools top 10 solutions in 2025

Best SAST tools: Top 10 solutions in 2025

Tiffany Jennings Nov 19, 2025

SAST

Explore the top 10 SAST tools of 2025.

Npm user flooding registry with fake font packages - blog banner risk reduction dashboard 2

AppSec metrics fail, Mend.io’s Risk Reduction Dashboard fixes it

Tiffany Jennings Nov 18, 2025

Application Security

See how Mend.io's Risk Reduction Dashboard works.

Npm user flooding registry with fake font packages - red teaming blog post v3

Why AI Red Teaming is different from traditional security

Tiffany Jennings Nov 13, 2025

AI Security

Explore how AI red teaming redefines security.

Npm user flooding registry with fake font packages - renovate npm post 1

Building a more secure npm ecosystem with Mend Renovate

Jamie Tanna Nov 6, 2025

Dependency Updates

See how Mend Renovate is strengthening npm ecosystem security.

Npm user flooding registry with fake font packages - best application security testing providers

Best Application Security Testing Services to Know

Tiffany Jennings Nov 5, 2025

Application Security

Discover the best Application Security Testing (AST) services in 2025.

Npm user flooding registry with fake font packages - open source security post

Ultimate Guide to Open Source Security: Risks, Attacks & Defenses

Tiffany Jennings Oct 28, 2025

Open Source Security

Explore top risks and proven open source security strategies.

Npm user flooding registry with fake font packages - blog agentic ide

Mend.io Expands AI Native AppSec to Windsurf, CoPilot, Claude Code, and Amazon Q Developer

Tiffany Jennings Oct 21, 2025

Application Security

Learn how Mend.io brings real-time AppSec to AI coding tools.

Npm user flooding registry with fake font packages - container security blog

Building Strong Container Security for Modern Applications

Tiffany Jennings Oct 16, 2025

Container Security

Discover how to protect containerized applications.

Npm user flooding registry with fake font packages - code scanning

Code Scanning in 2025: Why, How & the Role of Scanning in AI Security

Tiffany Jennings Oct 15, 2025

SAST

Explore code scanning benefits, tools, and best practices.

Npm user flooding registry with fake font packages - top open source licenses

Top Open Source Licenses Explained

Tiffany Jennings Oct 9, 2025

Open Source Licenses

Explore the top open source licenses. Learn about copyleft vs permissive licenses.

Npm user flooding registry with fake font packages - container scanning

We Knew Registry Scanning Wasn’t Enough. So We Built What Comes Next.

Amit Chita Oct 8, 2025

Container Security

Stop scanning everything: Focus on what’s actually running.

1 2 3 4 ... 34