The DevSecOps Talks Podcast
The DevSecOps Talks Podcast
Mattias Hemmingsson, Julien Bisconti and Andrey Devyatkin
#97 - Shift Left, Get Hacked: Supply Chain Attacks Hit Devs
35 minutes Posted Apr 15, 2026 at 11:20 pm.
0:00
35:36
Download MP3
Show notes
March 2026 made supply chain attacks feel a lot less theoretical, but what made these incidents different? The hosts discuss compromised publishing credentials, automatic execution hooks like post-install scripts and Python `.pth` files, and how both humans and security tools caught the malicious releases. They also talk through concrete ways to make developer environments harder to abuse. We are always happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners.DevSecOps Talks podcast LinkedIn pageDevSecOps Talks podcast websiteDevSecOps Talks podcast YouTube channel