Security News Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft TheHackerNews Daniel Bender 01 May 2026 Sleeper packages in Ruby and Go steal credentials and alter CI workflows, leading to persistent access and data exfiltration.
