Skip to content
AppSec Santa Issue #12 just dropped — read it →

AppSec Santa Weekly

Opinionated changelog analysis and category trends from 200+ AppSec tools — delivered every Tuesday.

326 releases tracked · 12 issues published · 290+ tools watched · 70+ repos

Latest issue

#12 — AI agent security: 5 real questions to ask vendors

AI agent security is a new category forming around one real risk: the lethal trifecta. After the Google Antigravity exfiltration, here are the five questions I ask any prompt-injection vendor.

Read this issue
Recent issues

#11 — Anthropic verified my Shai-Hulud research in 3 hours

Claude Code blocked my Shai-Hulud worm research. Three hours later, Anthropic's Cyber Verification Program approved me. Here's what the block, the form, and the approval actually mean for cyber-capable AI access.

#10 — After Cisco-Astrix: The Non-Human Identity Vendor Map

Two weeks after Cisco's intent to acquire Astrix, the NHI vendor category is being marketed as one product. I count five distinct plays.

61 releases

#9 — Your Supply Chain's Provenance Just Lied To You

On May 11, 2026, TanStack's npm packages shipped malicious code from a trusted publishing pipeline. Provenance attests pipeline identity, not pipeline honesty.

By the numbers
326
Releases tracked
12
Weekly issues
290+
Tools watched
70+
Repos monitored
Older issues

#8 — The Next AppSec Boundary Isn't Code vs. Cloud. It's Human vs. Non-Human.

Non-human identities — CI tokens, OAuth grants, agent sessions — are now the primary AppSec attack surface. Mini Shai-Hulud and Cisco's Astrix deal prove it.

#7 — Bitwarden CLI Worm Hunts AI Coding Assistants, Cursor+GPT-5.5 Tops Endor's League, Checkmarx Data Hits the Dark Web

Shai-Hulud backdoors @bitwarden/cli to steal AI coding tokens, Cursor+GPT-5.5 leads Endor's Agent Security League, Checkmarx data hits the dark web.

49 releases

#6 — MCP Ships a 200K-Server Protocol RCE, Endor Finds 83% of AI Code Insecure, Nuclei Patches Two CVEs

Anthropic's MCP ships a 10-CVE protocol-level RCE hitting 200K instances. Endor's benchmark finds 83% of AI-generated code has security bugs. 45 releases.

45 releases

#5 — Anthropic Mythos Finds Thousands of Zero-Days, Axios Reaches OpenAI, Cisco Buys Galileo

Claude Mythos finds thousands of zero-days incl. 17-year FreeBSD NFS RCE. Axios compromise hits OpenAI signing. Cisco buys Galileo. 49 releases tracked.

49 releases

#4 — GitGuardian Ships AI Coding Tool Hooks, Semgrep and OpenGrep Diverge on Taint Analysis

GitGuardian ships secret scanning for Claude Code, Cursor, and Copilot, while Semgrep and OpenGrep diverge on taint analysis. 46 releases this week.

46 releases

#3 — TeamPCP Hits Five Ecosystems, Axios Gets Hijacked, Agentic Security Goes Mainstream

TeamPCP hits LiteLLM, Telnyx, and Checkmarx KICS. The axios npm package is hijacked, and SonarQube 2026.2 ships AI CodeFix. 22 releases tracked.

22 releases

#2 — RSAC 2026 Opens: AI Agent Security Dominates, Trivy Compromised Twice

RSAC 2026 brings AI agent security from major vendors, Trivy's GitHub Action is compromised twice via tag poisoning, and Google closes its $32B Wiz acquisition.

25 releases

#1 — OpenAI Acquires Promptfoo, SCA Leads with 9 Releases

First issue: OpenAI acquires Promptfoo, Mondoo raises $17.5M and ships v13, Gatekeeper v3.22 flips a default, SCA leads with 9 releases.

29 releases

About This Newsletter

AppSec Santa Weekly is a free weekly newsletter with opinionated changelog analysis and category trends from 200+ application security tools across 12 categories. Each category section starts with a trend observation — where the tools are heading and what patterns are emerging — followed by individual release breakdowns with context on what they mean.

I built this for security engineers, DevSecOps teams, and anyone who picks tools for a living. No funding news, no conference recaps, no fluff — just tools, changelogs, and what they tell us about where AppSec tooling is going. I track 70+ GitHub repos and 89 vendor blogs every week and package it into a 3-minute Tuesday read.

Don't miss the next issue

Tool changelogs with analysis, not noise. Every Tuesday, 3 minutes.