I hereby claim:
- I am aaroneast1 on github.
- I am aaroncloud (https://keybase.io/aaroncloud) on keybase.
- I have a public key ASAP2xOpmLbU2t0kkyeLcnHlcGNGe2pcZ3HT2nGPc9bkywo
To claim this, I am signing this object:
aaroneast1
/ rpm-digital-signature.sh
Created
November 2, 2017 14:20
— forked from fernandoaleman/rpm-digital-signature.sh
How to sign your custom RPM package with GPG key
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # How to sign your custom RPM package with GPG key | |
| # Step: 1 | |
| # Generate gpg key pair (public key and private key) | |
| # | |
| # You will be prompted with a series of questions about encryption. | |
| # Simply select the default values presented. You will also be asked | |
| # to create a Real Name, Email Address and Comment (comment optional). | |
| # | |
| # If you get the following response: |
aaroneast1
/ keybase.md
Created
October 4, 2019 08:46
aaroneast1
/ Shai-Hulud.md
Created
September 22, 2025 07:34
Shai-Hulud NPM Worm Detection and Removal Guide
The Shai-Hulud worm is a self-replicating malware that has compromised 500+ npm packages. It steals credentials, creates malicious GitHub repositories, and spreads automatically across the npm ecosystem. This guide provides step-by-step detection and removal instructions.
During a routine project update where I cleared npm dependency cache and updated my Dockerfile and GitHub workflow, my Docker build started hanging unexpectedly. Initially suspecting my Dockerfile changes, I reverted them but the issue persisted. This suspicious behavior led me to investigate npm-related issues, where I discovered news about the Shai-Hulud worm infecting 500+ packages. Upon checking, I found several compromised packages in my project dependencies.