Log inOpen app
Aikido Security
2,182 posts
user avatar
Aikido Security
@AikidoSecurity
Secure everything devs build, ship & run. 🌐 aikido.dev ⭐️ github.com/AikidoSec Get developers back to building.
San Francisco, CA
aikido.dev
Joined September 2022
1,172
Following
11.9K
Followers
user avatar
@AikidoSecurity

See Aikido Security’s full profile

Open X

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    Aikido Security
    @AikidoSecurity
    May 14
    Aikido Intel is your earliest warning for supply chain threats. Our engine detects malware and vulnerabilities in open-source ecosystems within minutes. Built by our team of security researchers & AI engineers. Bookmark it: intel.aikido.dev
    6
    18
    88
    66K
  • Aikido Security reposted
    user avatar
    alli
    Vercel
    @sonofalli
    7h
    he commits code but won’t commit to you?
    38
    15
    204
    8.7K
  • Aikido Security reposted
    user avatar
    Theo - t3.gg
    @theo
    6h
    Replying to @RhysSullivan
    You forgot this: 🚨 BREAKING
    22
    1
    809
    35K
  • user avatar
    Aikido Security
    @AikidoSecurity
    9h
    🇧🇪
    376
  • Aikido Security reposted
    user avatar
    OWASP® Foundation
    @owasp
    18h
    Our friends at @AikidoSecurity just launched Aikido Code Audit, and OWASP Members try it for FREE!!!! Every OWASP member gets 200 Aikido credits to run it on their own codebase. Frontier AI models just made finding and exploiting logic flaws cheap. Now you can harness that
    1
    2
    2.1K
  • Aikido Security reposted
    user avatar
    Charlie Eriksen
    Aikido Security
    @CharlieEriksen
    Jul 9
    Hallelujah! v12 is now out. Get upgraded, folks!
    user avatar
    GitHub Changelog
    GitHub
    @GHchangelog
    Jul 8
    npm v12 enables install-time security defaults and starts deprecating 2FA-bypass granular access tokens (GATs). • Dependency scripts, Git, and remote URL installs now off by default unless allowed. github.blog/changelog/2026…
    2
    11
    1.7K
  • Aikido Security reposted
    user avatar
    sudox
    @kmcnam1
    Jul 9
    Replying to @0xTib3rius
    I made it better for you :P
    10
    4
    56
    1.2K
  • Aikido Security reposted
    user avatar
    Tib3rius
    @0xTib3rius
    Jul 9
    New sticker for DEF CON this year.
    Made with AI
    12
    10
    155
    8.8K
  • user avatar
    Aikido Security
    @AikidoSecurity
    Jul 9
    Replying to @AikidoSecurity
    RSVP here ->
    Omega Mart After Hours | Las Vegas · Luma
    From luma.com
    3
    252
  • user avatar
    Aikido Security
    @AikidoSecurity
    Jul 9
    First stop for @BlackHatEvents week: Omega Mart 🛒💜 We’re teaming up with @awscloud and @Tailscale for an after-hours happy hour on August 4. Food, drinks, good conversations, full access to explore Omega Mart, and an interactive scavenger hunt through the aisles.
    1
    1
    2
    618
  • user avatar
    Aikido Security
    @AikidoSecurity
    Jul 9
    A malicious version of injectivelabs/sdk-ts (around 37,000 weekly downloads) was published that steals crypto wallet keys. It's been fixed, but the bad version was live and downloaded before removal. If you installed 1.20.21 of sdk-ts or any injectivelabs package, upgrade to
    2
    2
    10
    5.8K
    user avatar
    Aikido Security
    @AikidoSecurity
    Jul 9
    Full breakdown:
    Compromised @injectivelabs/sdk-ts exfiltrates wallet keys through fake telemetry
    From aikido.dev
    1
    309
  • user avatar
    Aikido Security
    @AikidoSecurity
    Jul 9
    Betterleaks just got smaller and faster ⚡️ Since v1.0.1, the release binary has dropped from 34.7 MiB to 21.7 MiB, a 37% reduction. On a 6 KB input, representative of the small repeated scans you might run during file edits in an IDE, pre-commit hooks, Lambda functions, or
    1
    5
    1.2K
    user avatar
    Aikido Security
    @AikidoSecurity
    Jul 9
    ⭐️
    GitHub - betterleaks/betterleaks: Scan the world (for secrets)
    From github.com
    1
    230
  • user avatar
    Aikido Security
    @AikidoSecurity
    Jul 9
    Believe unified AppSec across France, the US and Japan into one view across code and containers, and doubled its patch rate from 20% to 41% with Aikido. Yolanda Amorim, Application Security Manager at Believe, tells the full story.
    00:00
    1
    1
    2
    841
    user avatar
    Aikido Security
    @AikidoSecurity
    Jul 9
    How Believe brought AppSec under one roof across France, US and Japan with Aikido
    From aikido.dev
    1
    275
  • user avatar
    Aikido Security
    @AikidoSecurity
    Jul 8
    In case you missed it, @github shipped another GitHub Actions hardening update on June 26. Workflows triggered by untrusted events like `pull_request_target` and `issue_comment` now get read-only cache tokens, closing the cache poisoning path where an attacker could plant data
    1
    3
    22
    1.5K
    user avatar
    Aikido Security
    @AikidoSecurity
    Jul 8
    We put together a complete GitHub Actions security checklist covering this and everything else attackers are actively exploiting right now:
    Security Checklist for GitHub Actions
    From aikido.dev
    1
    5
    430