Trivy and LiteLLM was compromised

The Trivy GH Action was compromised and it affected a lot of other open source tools, creating an impactful attack chain.

Here is the Snyk Post: https://snyk.io/pt-BR/articles/poisoned-security-scanner-backdooring-litellm/

How you can be attacked by an MCP Server

A live session by José Augusto talking about MCP security

Marmite Blog Engine

I discovered this tool called Marmite to build blogs using markdown. It's awesome (I build this site using it hahaha).

Agent Security NotebookLM

I created a NotebookLM with all sources that I'm reviewing about security for AI Agents.