# AppSec Newsletter 0038

### Links

* 🎖️ [Monitoramento Regular de Repositórios Git para Identificação de Dados PII com AWS Macie | Gustavo Rorato](https://medium.com/@gustavororato/monitoramento-regular-de-reposit%C3%B3rios-git-para-identifica%C3%A7%C3%A3o-de-dados-pii-com-aws-macie-ca3e920a19c1)
    
* [eBPF Foundation Releases Security Threat Model and Audit Reports | TheNewStack](https://thenewstack.io/ebpf-foundation-releases-security-threat-model-and-audit-reports/)
    
* [Supply Chain Attacks Targeting LLM Application Developers: The Hidden Dangers of Fake Open Source Packages | Socket.dev](https://socket.dev/blog/supply-chain-attacks-targeting-llm-application-developers)
    
* [The Future Application Security Engineer | Gyan Security](https://www.gyan.ca/the-future-application-security-engineer/)
    
* [SSRF & URI validation bypass in 2FAuth | XBOW](https://xbow.com/blog/xbow-2fauth-ssrf/)
    
* [Magika - Detect file content types with deep learning | Google](https://github.com/google/magika)
    
* [Supply Chain Attack Using Ethereum Smart Contracts to Distribute Multi-Platform Malware | Checkmarx Zero](https://zero.checkmarx.com/supply-chain-attack-using-ethereum-smart-contracts-to-distribute-multi-platform-malware-b01ab62b3bab)
    
* [Developing Secure Software (LFD121) - Course Free | The Linux Foundation](https://training.linuxfoundation.org/training/developing-secure-software-lfd121/?utm_source=tldrsec.com&utm_medium=referral&utm_campaign=tl-dr-sec-255-ai-finds-0day-in-sqlite-cloud-security-tools-auto-generate-terraform-secure-guardrails)
    

### **Siga o Guia de AppSec nas redes!**

* Youtube: [**youtube.com/@GuiadeAppSec**](http://youtube.com/@GuiadeAppSec)
    
* Twitter / X: [**twitter.com/guiadeappsec**](http://twitter.com/guiadeappsec)
    
* Site: [**guiadeappsec.com.br**](http://guiadeappsec.com.br/)
