Tag
cli-security
Safeguard articles tagged "cli-security" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Best Practices
Security considerations for authenticating CLI tools through corporate proxies
Two 2026 curl CVEs show proxy credentials leaking across redirects and reused connections — plus why .npmrc still stores proxy passwords in plaintext.
Jul 12, 20266 min read
Vulnerability Management
Root cause: CVE-2022-40764, the Snyk CLI command injection
A crafted vendor.json field let attackers run shell commands from inside a security scanner — CVE-2022-40764 shows why CLI tools must never build shell strings.
Jul 12, 20266 min read