0xLupin

Expert 0xLupin discusses supply chain attacks, ethical considerations for maintainers, and new tool Depi. Topics include types of attacks, vulnerabilities in CI builds, challenges in managing software dependencies, detecting supply chain attacks, domain squatting, securing bug bounty programs, significance of lock files, bug hunting emotions, analyzing attack scenarios, and risks of NPM and Yarn supply chain attacks.

In this episode, 0xLupin, a security researcher and bug bounty enthusiast, joins the show. They discuss the Tokyo LHE, their journey into security research, and the benefits of collaboration. They also touch on pair hacking, joining a team, and starting a business together. The podcast covers some great tools for collaboration and offers valuable insights into the world of bug bounty hunting.