Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...
Microsoft

Microsoft 365 Roadmap

Copilot in Word introduces a Legal Agent designed for contract review, redlining, and negotiation using structured legal workflows. Legal teams gain negotiation ready edits, clear citations, and full ...

Clear your calendar, Drupal user: You have a critically urgent patch to install

The Drupal Security Team’s Monday PSA announcing the imminent patch for Drupal core doesn’t include any specifics, with the ...
GitHub

svg-pan-zoom library

If you found a bug or have a suggestion first check if there is a similar open or closed issue. If there are none then create a new one. If you solved a bug or implemented a feature that may be useful ...
GitHub

Low-Level OAuth 2 / OpenID Connect Client API for JavaScript Runtimes

This software provides a collection of routines that can be used to build client modules for OAuth 2.1, OAuth 2.0 with the latest Security Best Current Practices (BCP), and FAPI 2.0, as well as OpenID ...