Welcome to the fourth issue of Docker Security Dispatch, written from the beautiful city of Bratislava, Slovakia.
June has proven that the security battleground has shifted from the production server to the developer's workstation, the CI/CD pipeline cache, and the AI agent's execution context. Supply chain worms are evolving to bypass the most trusted industry defenses, and new research has exposed critical flaws in the AI routing layer.
Key Takeaways
Miasma & Phantom Gyp: The latest wave of npm worms bypasses the --ignore-scripts defense using native binding.gyp command substitution.
Malicious AI Routers: Understanding the implications of the "Your Agent Is Mine" research, which reveals how third-party LLM APIs alter in-flight tool-calling requests.






