Saved in:
| Main Authors: | Soeiro, Luıs, Robert, Thomas, Zacchiroli, Stefano |
|---|---|
| Format: | Preprint |
| Published: |
2025
|
| Subjects: | |
| Online Access: | https://arxiv.org/abs/2511.11171 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Similar Items
GoSurf: Identifying Software Supply Chain Attack Vectors in Go
by: Cesarano, Carmine, et al.
Published: (2024)
by: Cesarano, Carmine, et al.
Published: (2024)
Wolves in the Repository: A Software Engineering Analysis of the XZ Utils Supply Chain Attack
by: Przymus, Piotr, et al.
Published: (2025)
by: Przymus, Piotr, et al.
Published: (2025)
Towards Predicting Multi-Vulnerability Attack Chains in Software Supply Chains from Software Bill of Materials Graphs
by: Baird, Laura, et al.
Published: (2026)
by: Baird, Laura, et al.
Published: (2026)
SynthChain: A Synthetic Benchmark and Forensic Analysis of Advanced and Stealthy Software Supply Chain Attacks
by: Tan, Zhuoran, et al.
Published: (2026)
by: Tan, Zhuoran, et al.
Published: (2026)
Maven-Hijack: Software Supply Chain Attack Exploiting Packaging Order
by: Reyes, Frank, et al.
Published: (2024)
by: Reyes, Frank, et al.
Published: (2024)
ROSA: Finding Backdoors with Fuzzing
by: Kokkonis, Dimitri, et al.
Published: (2025)
by: Kokkonis, Dimitri, et al.
Published: (2025)
GoLeash: Mitigating Golang Software Supply Chain Attacks with Runtime Policy Enforcement
by: Cesarano, Carmine, et al.
Published: (2025)
by: Cesarano, Carmine, et al.
Published: (2025)
Towards Robust Detection of Open Source Software Supply Chain Poisoning Attacks in Industry Environments
by: Zheng, Xinyi, et al.
Published: (2024)
by: Zheng, Xinyi, et al.
Published: (2024)
QUT-DV25: A Dataset for Dynamic Analysis of Next-Gen Software Supply Chain Attacks
by: Mehedi, Sk Tanzir, et al.
Published: (2025)
by: Mehedi, Sk Tanzir, et al.
Published: (2025)
Your Agent Is Mine: Measuring Malicious Intermediary Attacks on the LLM Supply Chain
by: Liu, Hanzhi, et al.
Published: (2026)
by: Liu, Hanzhi, et al.
Published: (2026)
Mirage: Defense against CrossPath Attacks in Software Defined Networks
by: Murtuza, Shariq, et al.
Published: (2024)
by: Murtuza, Shariq, et al.
Published: (2024)
Lexo: Eliminating Stealthy Supply-Chain Attacks via LLM-Assisted Program Regeneration
by: Lamprou, Evangelos, et al.
Published: (2025)
by: Lamprou, Evangelos, et al.
Published: (2025)
Silent Subversion: Sensor Spoofing Attacks via Supply Chain Implants in Satellite Systems
by: Vanlyssel, Jack, et al.
Published: (2026)
by: Vanlyssel, Jack, et al.
Published: (2026)
Security Enclave Architecture for Heterogeneous Security Primitives for Supply-Chain Attacks
by: Raj, Kshitij, et al.
Published: (2025)
by: Raj, Kshitij, et al.
Published: (2025)
Enhancing Software Supply Chain Resilience: Strategy For Mitigating Software Supply Chain Security Risks And Ensuring Security Continuity In Development Lifecycle
by: Akinsola, Ahmed, et al.
Published: (2024)
by: Akinsola, Ahmed, et al.
Published: (2024)
Security Vulnerabilities in Software Supply Chain for Autonomous Vehicles
by: Haque, Md Wasiul, et al.
Published: (2025)
by: Haque, Md Wasiul, et al.
Published: (2025)
Evaluating Software Supply Chain Security in Research Software
by: Hegewald, Richard, et al.
Published: (2025)
by: Hegewald, Richard, et al.
Published: (2025)
What Gets Measured Gets Managed: Mitigating Supply Chain Attacks with a Link Integrity Management System
by: So, Johnny, et al.
Published: (2025)
by: So, Johnny, et al.
Published: (2025)
SOK: A Taxonomy of Attack Vectors and Defense Strategies for Agentic Supply Chain Runtime
by: Jiang, Xiaochong, et al.
Published: (2026)
by: Jiang, Xiaochong, et al.
Published: (2026)
Establishing a Baseline of Software Supply Chain Security Task Adoption by Software Organizations
by: Williams, Laurie, et al.
Published: (2025)
by: Williams, Laurie, et al.
Published: (2025)
Software Supply Chain Security of Web3
by: Monperrus, Martin
Published: (2025)
by: Monperrus, Martin
Published: (2025)
Operationalizing Research Software for Supply Chain Security
by: Kalu, Kelechi G., et al.
Published: (2026)
by: Kalu, Kelechi G., et al.
Published: (2026)
TPPR: APT Tactic / Technique Pattern Guided Attack Path Reasoning for Attack Investigation
by: Sheng, Qi
Published: (2025)
by: Sheng, Qi
Published: (2025)
SkillAttack: Automated Red Teaming of Agent Skills through Attack Path Refinement
by: Duan, Zenghao, et al.
Published: (2026)
by: Duan, Zenghao, et al.
Published: (2026)
PyPitfall: Dependency Chaos and Software Supply Chain Vulnerabilities in Python
by: Mahon, Jacob, et al.
Published: (2025)
by: Mahon, Jacob, et al.
Published: (2025)
AttackMate: Realistic Emulation and Automation of Cyber Attack Scenarios Across the Kill Chain
by: Landauer, Max, et al.
Published: (2026)
by: Landauer, Max, et al.
Published: (2026)
Attacks Meet Interpretability (AmI) Evaluation and Findings
by: Ma, Qian, et al.
Published: (2023)
by: Ma, Qian, et al.
Published: (2023)
Supply-Chain Poisoning Attacks Against LLM Coding Agent Skill Ecosystems
by: Qu, Yubin, et al.
Published: (2026)
by: Qu, Yubin, et al.
Published: (2026)
Supply Chain Network Security Investment Strategies Based on Nonlinear Budget Constraints: The Moderating Roles of Market Share and Attack Risk
by: Cheng, Jiajie, et al.
Published: (2025)
by: Cheng, Jiajie, et al.
Published: (2025)
ATM: a Logic for Quantitative Security Properties on Attack Trees
by: Nicoletti, Stefano M., et al.
Published: (2023)
by: Nicoletti, Stefano M., et al.
Published: (2023)
NICE: A Framework for Declarative and Machine-Checkable Vulnerability Reproduction
by: Nguyen, Minh-Luân, et al.
Published: (2026)
by: Nguyen, Minh-Luân, et al.
Published: (2026)
Securing the Software Package Supply Chain for Critical Systems
by: Murali, Ritwik, et al.
Published: (2025)
by: Murali, Ritwik, et al.
Published: (2025)
Dirty-Waters: Detecting Software Supply Chain Smells
by: Liu, Raphina, et al.
Published: (2024)
by: Liu, Raphina, et al.
Published: (2024)
DiffusionHijack: Supply-Chain PRNG Backdoor Attack on Diffusion Models and Quantum Random Number Defense
by: You, Ziyang, et al.
Published: (2026)
by: You, Ziyang, et al.
Published: (2026)
How Can ChatGPT Support Human Security Testers to Help Mitigate Supply Chain Attacks?
by: Zhang, Ying, et al.
Published: (2023)
by: Zhang, Ying, et al.
Published: (2023)
Secret Stealing Attacks on Local LLM Fine-Tuning through Supply-Chain Model Code Backdoors
by: Li, Zi, et al.
Published: (2026)
by: Li, Zi, et al.
Published: (2026)
SoK: A Defense-Oriented Evaluation of Software Supply Chain Security
by: Ishgair, Eman Abu, et al.
Published: (2024)
by: Ishgair, Eman Abu, et al.
Published: (2024)
LIPSTICK: Corruptibility-Aware and Explainable Graph Neural Network-based Oracle-Less Attack on Logic Locking
by: Aghamohammadi, Yeganeh, et al.
Published: (2024)
by: Aghamohammadi, Yeganeh, et al.
Published: (2024)
Pinning Is Futile: You Need More Than Local Dependency Versioning to Defend against Supply Chain Attacks
by: He, Hao, et al.
Published: (2025)
by: He, Hao, et al.
Published: (2025)
Propagation-Based Vulnerability Impact Assessment for Software Supply Chains
by: Ruan, Bonan, et al.
Published: (2025)
by: Ruan, Bonan, et al.
Published: (2025)
Similar Items
-
GoSurf: Identifying Software Supply Chain Attack Vectors in Go
by: Cesarano, Carmine, et al.
Published: (2024) -
Wolves in the Repository: A Software Engineering Analysis of the XZ Utils Supply Chain Attack
by: Przymus, Piotr, et al.
Published: (2025) -
Towards Predicting Multi-Vulnerability Attack Chains in Software Supply Chains from Software Bill of Materials Graphs
by: Baird, Laura, et al.
Published: (2026) -
SynthChain: A Synthetic Benchmark and Forensic Analysis of Advanced and Stealthy Software Supply Chain Attacks
by: Tan, Zhuoran, et al.
Published: (2026) -
Maven-Hijack: Software Supply Chain Attack Exploiting Packaging Order
by: Reyes, Frank, et al.
Published: (2024)