by CPI Staff | Apr 22, 2026 | Azure, Azure Security, Blog, Cybersecurity, Software Supply Chain Security
In this blog post, The Vercel Breach Shows Why Third-Party Hosting Belongs in Your Next Azure Well-Architected Review, we look at why platforms like Vercel, Netlify, Cloudflare Pages, and Railway can no longer sit quietly outside the governance perimeter of an...
by CPI Staff | Apr 12, 2026 | AI Governance & Risk Management, Blog, Cybersecurity, Essential 8, Software Supply Chain Security
When a North Korean state actor compromised the Axios npm package on March 31, 2026, the blast radius did not stop at developer laptops. It reached OpenAI’s macOS code-signing pipeline — the system that certifies ChatGPT Desktop, Codex, Codex CLI, and Atlas as...
