 Thu, Sep 18, 2025 Thu, Sep 18, 2025- How Replit is Protecting You From the "Shai-Hulud" Worm- Recently, a sophisticated supply chain attack compromised the popular @ctrl/tinycolor NPM package, which receives over 2... 
 Mon, Jun 12, 2023 Mon, Jun 12, 2023- June 6, 2023, Single-Sign-On Security Vulnerability- Earlier today, we emailed users about a security vulnerability affecting parts of our single-sign-on functionality. Whil... 
 Fri, Jun 9, 2023 Fri, Jun 9, 2023- Keeping Your API Keys Safe- Replit gives you the power to both build your own applications and to leverage powerful third party services through the... 
 Mon, Apr 3, 2023 Mon, Apr 3, 2023- April 2 Potential GitHub Credentials Exposure- Yesterday, on April 2, 2023, Replit discovered a site vulnerability that may have exposed GitHub auth tokens for <0.01% ... 
 Wed, Mar 16, 2022 Wed, Mar 16, 2022- Escaping Dirty Pipe (a.k.a. CVE-2022-0847), mostly unscathed- You may have heard that there was a very critical Linux kernel vulnerability making the rounds. As with all important en... 

