lncdeʍ

Claude code source code has been leaked via a map file in their npm registry! Code: …a8527898604c1bbb12468b1581d95e.r2.dev/src.zip

🚨 CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages. The latest axios@1.14.1 now pulls in plain-crypto-js@4.2.1, a package that did not exist before today. This is a live compromise. This is textbook supply chain installer malware. axios has 100M+ weekly downloads. Every npm install pulling the latest version is potentially compromised right now. Socket AI analysis confirms this is malware. plain-crypto-js is an obfuscated dropper/loader that: • Deobfuscates embedded payloads and operational strings at runtime • Dynamically loads fs, os, and execSync to evade static analysis • Executes decoded shell commands • Stages and copies payload files into OS temp and Windows ProgramData directories • Deletes and renames artifacts post-execution to destroy forensic evidence If you use axios, pin your version immediately and audit your lockfiles. Do not upgrade.

We replaced urllib3 inside boto3 with a Zig HTTP client. One import line. Same API. Upto 115x faster with TurboAPI. import faster_boto3 as boto3 Here's what happened..

The Arch Linux 32 project (a volunteer-maintained 32-bit fork of Arch Linux) announced it was geo-blocking Brazilian IP addresses to avoid compliance with Brazil's newly enacted ECA Digital law. This law mandates auditable age verification for digital services potentially accessible by minors, including operating systems.

Claude Codeのインシデントきたきた Claude Opus 4.6 でエラー増加 新しいインシデント：原因特定済み 問題はすでに特定されており、 現在修正が実装されているところです。 じゃあおーぱすじゃなければいけるかな

and k8s homelab

Claude helped me maintain/finish side personal projects from home automation, homelab, cloud web apps, and simple quick video editing app. All these projects would have rotted or even started without it. An example of a tauri app (react/ffmpeg) #claude #claudecode

We are aware of the issue impacting the availability of Cloudflare’s network. It was not an attack; root cause was disabling some logging to help mitigate this week’s React CVE. Will share full details in a blog post today. Sites should be back online now, but I understand the frustration this causes and the work being

75 million identical requests to my DoH server from the Facebook crawler over the past 24 hours. Anybody @Meta could help? This is not sustainable.

Very happy with ghostty terminal. I migrated from Wezterm mainly because it has consistent behavior between Linux Gnome and MacOS + it is snappy and polished. Excellent work from the creator @Mitchellh and maintainers. #ghostty

Microsoft has removed two popular VSCode extensions, 'Material Theme – Free' and  'Material Theme Icons – Free,' from the Visual Studio Marketplace over code that indicates "malicious intent". The extensions were installed a total of 9 million times. bleepingcomputer.com/news/security/…

Notion uses SQLite compiled to WASM in browsers. This comment on HN provided a likely explanation behind the move. tl;dr: - LocalStorage: 10MB limit, lost writes - IndexedDB: Performance issues, reliability bugs hard to debug

Lazyvim with Lazygit FTW. Snappy and very productive with it. #lazyvim #lazyvim

Read more: surl.li/rhpec

Black Mirror has arrived, ahead of schedule. An entire cast of deepfaked people tricked a CFO out of $25 million. “(In the) multi-person video conference, it turns out that everyone was fake” Deepfaked shit is getting real.

After more than 11 years, I've decided to move on from HashiCorp. HashiCorp achieved more than my wildest dreams and I'm proud of the role I played. While this has been long planned, its still an emotional day. Here is the letter I shared with employees: hashicorp.com/blog/mitchell-…

@HumansNoContext youtu.be/56hqrlQxMMI

What song would you listen to in this place?

At last, I can break out the news that... Powertools for AWS Lambda is now an official AWS team!!!!!!! This secures: 🤩 Long-term project sustainability 🤩 Feature parity across languages 🔥 New home docs.powertools.aws.dev 🚀 Plan beyond Lambda 1/ #aws #serverless