<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Ai on GreenFlagged</title><link>https://blog.greenflagged.dev/tags/ai/</link><description>Recent content in Ai on GreenFlagged</description><generator>Hugo</generator><language>en-US</language><lastBuildDate>Tue, 14 Jul 2026 08:51:51 -0700</lastBuildDate><atom:link href="https://blog.greenflagged.dev/tags/ai/index.xml" rel="self" type="application/rss+xml"/><item><title>AsyncAPI Miasma RAT via CI/CD compromise</title><link>https://blog.greenflagged.dev/posts/2026-07-14-@asyncapi-compromise/</link><pubDate>Tue, 14 Jul 2026 08:51:51 -0700</pubDate><guid>https://blog.greenflagged.dev/posts/2026-07-14-@asyncapi-compromise/</guid><description>&lt;div class="attack-journey" data-attack-journey&gt;
 &lt;noscript&gt;This walkthrough needs JavaScript. The same catch is written up in
 the post body above.&lt;/noscript&gt;
&lt;/div&gt;
&lt;h2 id="another-day-another-npm-supply-chain-attack"&gt;Another day, another NPM supply chain attack&lt;/h2&gt;
&lt;p&gt;On July 14, 2026 an attacker stole a privileged personal access token. The attacker shipped five package versions that contained malicious code to the NPM registry.&lt;/p&gt;</description></item></channel></rss>