328: What you should know about Shai-Hulud and its impact on npm (with Chainguard's Dan Lorenc)

What the Dev?
30/09/2025 10 min
328: What you should know about Shai-Hulud and its impact on npm (with Chainguard's Dan Lorenc)

Listen "328: What you should know about Shai-Hulud and its impact on npm (with Chainguard's Dan Lorenc)"

Descargar episodio

Episode Synopsis

In this episode, Jenna interviews Dan Lorenc, CEO of Chainguard, about the Shai-Hulud worm that has made its way through the npm ecosystem.They discuss:What Shai-Hulud is and why it's so badSecurity measures GitHub plans to implement in npm Best practices to follow to mitigate risk

More episodes of the podcast What the Dev?

332: Knative graduates from CNCF (with Knative maintainer Dave Protasowski) 28/10/2025
331: How Spotify created its own AI tool, AiKA, to improve developer productivity (with Spotify's Pia Nilsson) 21/10/2025
330: Code quality + security shouldn't be separate concerns (with Aikido Security's Khachatur Virabyan) 14/10/2025
329: The impact of AI on ASPM (with ArmorCode's Mark Lambert) 07/10/2025
327: Failure is a key part of AI experimentation (with Planview's Alan Manuel) 23/09/2025
326: Using AI to modernize legacy code (with R Systems' Neeraj Abhyankar) 16/09/2025
325: The impact of AI on digital transformation (with Google's Andi Gutmans) 09/09/2025
324: QA management in an AI world (with Sembi's Judy Bossi) 02/09/2025
323: AI agents need transparency and trust to be successful (with Creatio's Burley Kawasaki) 26/08/2025
322: What to consider before selecting AI tooling (with Instabase's Anant Bhardwaj) 19/08/2025
© 2003-2025 ZARZA | AHEAD OF OUR TIME
privacy policy
In God we trust In God we trust
PreSales Questions? Click Here
or call our toll-free line at +1-888-5002068 Miami, Florida, USA