All Deep Dives For Infosec Conference Talks Covering Supply Chain Security. Talks analyzed in full.
![Zeal of the Convert: Taming Shai-Hulud with AI | [un]prompted 2026](https://thecyberarchive.com/assets/teasers/ai-assisted-supply-chain-attack-investigation-rami-mccarthy.webp)
Learn how AI workflows, reasoning models, and feedback loops turned a two-week manual investigation into a two-day operation that identified 2,400 supply chain attack victims.
![Code Is Free: Securing Software | [un]prompted 2026](https://thecyberarchive.com/assets/teasers/ai-security-guardrails-cicd-the-free-approach-paul-mcmillan-ryan-lopopolo.webp)
Learn how OpenAI engineers built LLM-powered security reviewers, living threat models, and a daily dependency scanner using ~40 lines of GitHub Actions YAML and checked-in Markdown files.
Learn the three hidden costs of software composition analysis and how to match SCA tools to your AppSec program maturity.
Learn how malicious VS Code extensions bypass Microsoft's safeguards to steal credentials and execute code on developer machines — and the only defense that actually works.
Learn to assess AI code generation security risks—from package hallucination to IP liability—and apply governance controls that protect your SDLC.
Learn how Snapchat uncovered three chained, high-impact bug bounty findings—supply chain RCE, Android deep link abuse, and Jupyter XSS-to-RCE—and the program capabilities each forced them to build.
Learn how to apply structured threat modeling to AI/ML systems using the ML SecOps framework, three diagnostic questions, and OWASP AI Exchange controls.
