Tee

🚀 Spearheaded the Front-End development for a Web3 staking app! Engineered with ReactJS, Web3.js, Ethers.js, on the BNB chain. Explore DeFi at dodiinu.world 🌐✨ #Web3 #ReactJS #Blockchain #DeFi #crypto_daily Community: t.me/DodiinuCoin

🚨 The axios npm package was hit by a serious supply chain attack today (March 31, 2026).The primary maintainer's npm account (jasonsaayman) was compromised — attackers changed the associated email to a ProtonMail address and used those credentials to publish two malicious versions directly to npm:axios@1.14.1 (mailto:axios@1.14.1) (newest 1.x line) axios@0.30.4 (mailto:axios@0.30.4) (legacy 0.x line) These versions sneaked in a hidden new dependency called plain-crypto-js@4.2.1 (mailto:plain-crypto-js@4.2.1), which isn't imported or used anywhere in axios's actual code. Its only job was to run a postinstall script that acts as a dropper for a cross-platform Remote Access Trojan (RAT) targeting Windows, macOS, and Linux.The malware:Connects to a command-and-control server (reported IOCs include sfrclak[.]com:8000 and IP 142.11.206.73) Downloads and executes platform-specific payloads Deletes itself and overwrites files (like package.json) to cover its tracks Axios is one of the most popular packages on npm (100 million weekly downloads depending on the source), so even projects that don't directly depend on axios could be affected if any transitive dependency pulls it in via a loose version range like ^1.14.0.Timeline highlights (UTC times, March 31, 2026):Malicious plain-crypto-js@4.2.1 published shortly before axios@1.14.1 (mailto:axios@1.14.1) published ~00:21 axios@0.30.4 (mailto:axios@0.30.4) published ~01:00 npm/security teams yanked both versions within a few hours (~03:15 UTC) Latest safe version re-pointed to 1.14.0 / 0.30.3 The malicious versions are already removed from the registry, but anyone who ran npm install or deployed during that ~3-hour window (especially in CI/CD) may have been exposed.What to do right now if you use axios (or might indirectly):Check your package.json and lockfile (package-lock.json / yarn.lock / pnpm-lock.yaml) for axios versions Pin to a known-safe version: "axios": "1.14.0" or "axios": "0.30.3" (remove ^ or ~) Delete node_modules + lockfile → run npm ci (or equivalent) to reinstall If you think you installed during the window: scan your machine, rotate any credentials/secrets that might have been on affected systems, and review for suspicious processes/network connections Consider adding --ignore-scripts in CI or using tools like Socket, StepSecurity, or similar for supply-chain monitoring going forward This is yet another reminder that maintainer account security (especially 2FA + not reusing passwords) and tight version pinning matter a lot in the npm ecosystem.Stay safe out there!

everything is programming

Don't make the mistake of being so understanding and forgiving that you overlook the fact that you’re being disrespected.

Trust the vibes you get, energy never lies.

No man is happy asking a fellow man for food. Don't mock a brother that came to you for bread.

Treat everyone like they're wearing a wire.

A child who cannot withstand the odor from an elder’s mouth cannot learn wisdom.

People still saw me as competition at my lowest, that's when I'knew I was destined for greatness.

If someone is hotter than you, then you are cooler than them. The 69th law of thermodynamics

Lord, remove anyyyyyyyyyyyyyy laziness or procrastination from my body and push me to myyyyyyyyyyy full potential in 2026!!!

This is my last tweet as the former timid Tolu you know . My Role Model in terms of creativity and not listening to people are Kanye West , Willsmith, Kevin Hart, Rockefeller family

I am alive, I have won, I am rich , I work with Christ.

If u later call am luck, na there me and you go get problem

Someone told me even your diet can affect the extent to which it swings

In retrospection I have found I have crazy mood swings 😭😭. How did my friends deal with me all this while 😂😂😂

My soul is too sensitive for meaningless relationships and friendships, I value them deeply.

Me tweeting my audience

I have not flown on an international flight, I don’t have a car, I don’t use the latest iPhone Yet my Life is Amazing . Thank you God 🙏 Comment yours under if you feel gratitude 💪

I have a security at my house, i have a cleaner, I am about to hire a cook, I am about to start my life project. I use the latest Mac at work. All this was just a figment of my imagination 5years back. My Life is Amazing.