How did the "Mini Shai-Hulud" attack compromise 170+ packages while maintaining valid SLSA Build L3 attestations?
Read the full blog to see where SLSA’s boundaries fall and how to secure your pipeline with defense in depth.
🔗: openssf.org/blog/2026/06...
