Quentin Laplanche

Sr Security Engineer, Docker

More by Quentin

Security that moves fast: Docker’s response to Shai Hulud 2.0

On November 21, 2025, security researchers detected the beginning of what would become one of the most aggressive npm supply chain attacks to date. The Shai Hulud 2.0 campaign compromised over 25,000 GitHub repositories within 72 hours, targeting packages from major organizations including Zapier, ENS Domains, PostHog, and Postman. The malware’s self-propagating design created a…

Christian Dupuis

Quentin Laplanche

Read now

Security that moves fast: Docker’s response to Shai Hulud 2.0

On November 21, 2025, security researchers detected the beginning of what would become one of the most aggressive npm supply chain attacks to date. The Shai Hulud 2.0 campaign compromised over 25,000 GitHub repositories within 72 hours, targeting packages from major organizations including Zapier, ENS Domains, PostHog, and Postman. The malware’s self-propagating design created a…

Christian Dupuis

Quentin Laplanche

Read now