GitHub has launched the GitHub MCP Registry, a curated registry of Model Context Protocol (MCP) servers with repositories on GitHub. The GitHub MCP Registry was launched September 16 with MCP servers ...

At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and publishes those secrets on ...

BOSTON--(BUSINESS WIRE)--Dynatrace (NYSE: DT), the leading AI-powered observability platform, today announced its participation in the launch of the GitHub MCP Registry, a curated directory designed ...

Dynatrace (NYSE: DT), the leading AI-powered observability platform, today announced its participation in the launch of the GitHub MCP Registry, a curated directory designed to help developers quickly ...

Cybersecurity researchers have flagged a fresh software supply chain attack targeting the npm registry that has affected more than 40 packages that belong to multiple maintainers. "The compromised ...

Right now, the npm, Python, NuGet, and Docker MCP server installation flow is hard coded to check the central (public) registries for whether the MCP server exists. This is good for the majority of ...

In what's the latest instance of a software supply chain attack, unknown threat actors managed to compromise Toptal's GitHub organization account and leveraged that access to publish 10 malicious ...

Update 8/5/25: Added Toptal's statement at the end of the article, which says their investigation determined noone was impacted by this breach. Hackers compromised Toptal's GitHub organization account ...

npm has taken down all versions of the real Stylus library and replaced them with a "security holding" page, breaking pipelines and builds worldwide that rely on the package. A security placeholder ...

This instruction in step 3 for readme.. are we supposed to run it? It appears more for the github actions yes? To access the github packages docker images, you need to authenticate docker with a gitub ...