Meta tags:
Headings (most frequently used words):
inedo, security, labs, please, enable, javascript, welcome, to, latest, vulnerabilities, detected, meet, the, team, our, analysts,
Text of the page (most frequently used words):
and (15), #security (13), inedo (11), the (11), labs (6), vulnerabilities (5), team (5), via (5), pgv (5), proget (4), vulnerability (4), psd (4), tools (4), mistune (4), researcher (3), potential (3), risk (3), but (3), experience (3), vulnerable (3), package (3), write (3), pvrs (3), category (3), javascript (3), please (3), tod (2), software (2), systems (2), analyst (2), chief (2), kim (2), cybersecurity (2), sectors (2), alex (2), papadimoulis (2), ceo (2), pete (2), with (2), management (2), banking (2), not (2), our (2), focused (2), that (2), rattler (2), arbitrary (2), file (2), smart (2), object (2), filename (2), dos (2), quadratic (2), time (2), parsing (2), parse_link_text (2), detected (2), malicious (2), packages (2), real (2), world (2), what (2), requires (2), welcome (2), use (2), function (2), enable (2), your (2), browser (2), things (2), will (2), 2026, llc, former, product, engineer, transitioned, into, career, interested, analyzing, dissecting, various, discover, threats, assessment, penetration, testing, threat, modeling, hoven, leverages, her, years, expertise, highly, regulated, oversees, was, key, figure, alongside, establishment, pento, has, background, regulatory, compliance, focus, sdlc, auditing, disaster, recovery, vendor, worked, logistics, government, yet, live, traveling, entertainment, industry, senior, barnum, analysts, small, reports, directly, diverse, over, range, domains, technologies, from, java, sector, legacy, windows, mining, advancements, cloud, native, machine, learning, although, new, started, ton, products, meet, rattler_cache, cache, path, traversal, conda, build, string, 265032c, 265031p, 265031q, 265031v, 265031w, summary, latest, vulnerabilties, 242823, 180456, better, prioritize, created, instead, relying, cvss, scores, uses, simple, categories, reflect, impact, urgency, highlights, can, safely, monitored, versus, immediate, action, including, most, critical, rating, system, established, 2023, are, researchers, improving, supply, chain, curate, database, pgvd, publish, clear, practical, ups, help, teams, understand, just, theoretical, severity, properly, for, this, site, research, home, internet, explorer, longer, supported, many, still, work, degraded, some, won, modern, such, edge, chrome, firefox,
Text of the page (random words):
welcome to inedo security labs internet explorer is no longer supported many things will still work but your experience will be degraded and some things won t function please use a modern browser such as edge chrome or firefox inedo security labs home vulnerabilities malicious packages research please enable javascript proget requires the use of javascript to function properly please enable javascript in your browser for this site welcome to inedo security labs established in 2023 we are a team of security researchers focused on improving software supply chain security we curate the proget vulnerability database pgvd and publish clear practical write ups to help teams understand real world risk not just theoretical severity to better prioritize that risk we created the proget vulnerability rating system pvrs instead of relying on cvss scores pvrs uses simple categories to reflect real world impact and urgency it highlights what can be safely monitored versus what requires immediate action including the most critical category 5 vulnerabilities 180456 detected vulnerabilities 242823 malicious packages 20 category 5 vulnerabilties latest vulnerabilities detected pvrs category vulnerability id summary package pgv 265031w mistune potential dos via quadratic time parsing in parse_link_text mistune pgv 265031v mistune potential dos via quadratic time parsing in parse_link_text mistune pgv 265031q psd tools vulnerable to arbitrary file write via smart object filename psd tools pgv 265031p psd tools vulnerable to arbitrary file write via smart object filename psd tools pgv 265032c rattler vulnerable to package cache path traversal via conda package build string rattler_cache py rattler meet the inedo security labs team we re a small but focused team that reports directly to inedo s ceo alex papadimoulis our experience is diverse and over a range of domains and technologies from java in the banking sector to legacy windows systems in mining and advancements in cloud native and machine learning and although we re new to the inedo team we started with a ton of experience in inedo s products our analysts pete barnum senior security analyst pete has a background in regulatory compliance with a focus on cybersecurity sdlc auditing risk management disaster recovery and it vendor management he s worked the banking logistics and government sectors but not yet the live traveling entertainment industry kim pento chief security researcher as chief security researcher at inedo security labs kim leverages her 20 years of expertise in cybersecurity in highly regulated sectors oversees the team and was a key figure alongside alex papadimoulis ceo of inedo in the establishment of inedo security labs tod hoven security analyst tod is a former product engineer of proget transitioned into a career as a security researcher interested in analyzing and dissecting various software and systems to discover potential vulnerabilities and threats vulnerability assessment penetration testing and threat modeling v2 0 6 2026 inedo llc
|