{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiekinndh5fpkg6y6rj7gm2j63mpujayav2vpi6cq4v3yk3jfuddom",
    "uri": "at://did:plc:gapzbf5nl5wxaqkqoecaeawh/app.bsky.feed.post/3mlx45ckxgyb2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreibktm3drk5nl2juuggle6mybioaw53vfg5ini62bjxdkwxxiuwbty"
    },
    "mimeType": "image/webp",
    "size": 46944
  },
  "path": "/widespread-mini-shai-hulud-campaign-is-a-matter-of-trust/",
  "publishedAt": "2026-05-15T15:00:59.000Z",
  "site": "https://devops.com",
  "tags": [
    "Blogs",
    "CI/CD",
    "DevOps and Open Technologies",
    "DevOps in the Cloud",
    "DevSecOps",
    "Features",
    "News",
    "SaaS",
    "Social - Facebook",
    "Social - LinkedIn",
    "Social - X",
    "360 Privacy",
    "AI supply chain attacks",
    "Aikido Security",
    "CI/CD security",
    "credentials",
    "Endor Labs",
    "npm malware",
    "Pathlock",
    "Sectigo",
    "Shai-Hulud worm",
    "TeamPCP",
    "trust in technology"
  ],
  "textContent": "The latest series of attacks using the notorious Shai-Hulud worm puts into sharp focus the threats facing software developers and their CI/CD pipelines, an issue that has been raised in recent months as bad actors increasingly turn their attention to DevOps environments. That said, these most recent Shai-Hulud incidents attributed to the TeamPCP group also […]",
  "title": "Widespread Mini Shai-Hulud Campaign Is a Matter of Trust"
}