s4if

i am quite close to going back to an autocomplete-only AI coding style. dead serious. i'm not sure the ostensible speed of agent-first coding is worth the brainrot, the laziness and the loss of code and architecture comprehension

‼️🚨 BREAKING: Another supply chain attack. 700+ GitHub repositories flagged, including PHP and Node.js projects. The malicious script was planted across all of them. When a developer installs the package, the script silently downloads a Linux file from GitHub, hides it under the name /tmp/.sshd (so it looks like a normal system file), and runs it in the background. It also skips security checks on the download and hides any error messages. 8 PHP packages on Packagist (the main PHP code library) were confirmed infected. The attacker hid the script inside a JavaScript config file (package.json) instead of the PHP one (composer.json), so PHP developers reviewing their code would not notice it. The biggest risk is to devdojo/wave (6,400 stars) and devdojo/genesis (9,100 installs), both popular Laravel project templates. Developers who use these templates run the bad script the moment they install dependencies. The same payload was also dropped into GitHub Actions (automated build pipelines) under a fake step called "Dependency Cache Sync," meaning it could infect company build servers too. Packagist removed the bad packages, but the auto-updating versions (dev-main, dev-master, 3.x-dev) can quietly come back if the original repos stay infected. IOCs: GitHub account parikhpreyash4 repo systemd-network-helper-aa5c751f drop path /tmp/.sshd command fragments curl -skL and chmod +x /tmp/.sshd.

1300 CC

Akhirnya, Merdeka!!

kemewahan terakhir yg gw punya.

@papanberjalan kalau python bang?

saya pernah mention kalo: Programmer Web menggunakan Java, PHP, NodeJS adalah koruptor di pemerintahan biaya cloud jadi mahal, aplikasi lemot. apalagi tanpa optimasi. di optimasi aja boros resource komputer, apalagi tidak di optimisasi

🚨🎙️Thierry Henry on Unai Emery leading Aston Villa to the Europa League title: “People need to start respecting Unai Emery at the highest level of football. What he has done with Aston Villa is not normal. When he arrived, Villa were a club trying to find direction again. Now they are lifting a European trophy against clubs with bigger budgets, bigger squads and more experience at this level. That does not happen by accident. Emery has something many coaches don’t have, he gives players belief very quickly. Suddenly average players look important, good players look elite, and the whole team starts playing with confidence and tactical discipline. We joke about his interviews sometimes, but when it comes to European football, this man is a specialist. There are coaches with bigger names who cannot build what he builds. Winning the Europa League with Aston Villa is one of the biggest statements of his career.”

🦔Microsoft canceled its internal Claude Code licenses this week after token-based billing made the cost untenable, even for a company with effectively infinite cloud resources. Uber's CTO sent an internal memo warning the company burned through its entire 2026 AI budget in just four months. American AI software prices have jumped 20% to 37%, and GitHub (owned by Microsoft) is dropping flat-rate plans for usage-based billing across its products. My Take The AI subsidy era is ending in real time. The same company that put $13 billion into OpenAI and built the Azure infrastructure powering most of Anthropic's compute just looked at the bill from a competitor's coding tool and decided it was not worth paying. That is not a productivity failure on Anthropic's end. Token-based pricing is forcing every enterprise customer to confront the actual cost of running these models at scale, and the number turns out to be far higher than the flat-rate experiments suggested. This ties directly to my Gemini Flash post yesterday. Anthropic, OpenAI, and Google all raised effective prices in the last six months. Enterprises that built workflows assuming AI costs would keep falling are now watching annual budgets evaporate in months. Two outcomes look likely from here. Either enterprises scale back AI usage to fit budgets, which slows the revenue ramp the labs need to justify their valuations ahead of IPOs, or the labs cut prices and absorb the losses, which makes the unit economics worse at exactly the wrong moment. Both paths land in the same place, the numbers stop working, and somebody has to take the writedown. Hedgie🤗

GitHub’s report today confirms that the compromised Nx Console extension was used as the initial access vector in this attack. This is a difficult thing to read as the CEO of Nx, and I want to be direct about it: we take responsibility for the role our software played in this incident. I’m grateful to the GitHub, Microsoft, and independent security teams that moved quickly to investigate, contain, and share information publicly. This incident highlights that there need to be deeper, more fundamental changes to how we and other maintainers need to think about securing developer tooling and open source distribution. We are already making major changes to our publishing, automation, and extension security posture, and we’ll continue sharing those changes publicly as we implement them. We’re also beginning conversations with other high-profile open source maintainers about how we can work together on some of the deeper structural problems around software supply chain security. A lot of the assumptions the ecosystem has operated under for years no longer hold. Our focus right now is supporting affected users, hardening Nx, and helping push the broader ecosystem toward stronger supply chain security practices. Updates and guidance: github.com/nrwl/nx-consol…

King of UCL. King of UEL

WOY! KALAU ADA UNJUK RASA DI SENAYAN ATAU DI GEDUNG-GEDUNG PEMDA TOLONG DILIPUT DAN DIBERITAIN DONG, WOY!! JANGAN BISU SAMA KABAR PROTES MASYARAKAT! @CNNIndonesia @kompascom @detikcom @NarasiNewsroom @officialinews_ @BBCIndonesia @Metro_TV @mediaindonesia @kumparan @TirtoID

Emery has won the Europa League 5 times and with three separate clubs. But they all have Villa in the name

Unfathomable banger

😩😩

🗣️ "Karena itu pemerintah saya telah menaikkan gaji-gaji guru, ada yang sampai hampir 300% naiknya penghasilan guru-guru, eh, hakim-hakim kita, maaf, hakim."

@txtdrstoryWA kapan 17845?

🚨BREAKING 1 DOLLAR US TELAH MENYENTUH 17.804 RUPIAH PER HARI INI!!! 📉🤯

Ternyata bener begini patternnya: Wenger 1998/99: Runner-Up 1999/00: Runner-Up 2000/01: Runner-Up 2001/02: JUARA 🏆 Arteta 2022/23: Runner-Up 2023/24: Runner-Up 2024/25: Runner-Up 2025/26: JUARA 🏆

ارسنال حقق الدوري ب82 نقطة على بيب غوارديولا كلوب موسم 18-19حقق 92 نقطة وخسر الدوري وفي موسم 21-22 حقق 97 ونقطة وخسر الدوري

@LambeResing Mendingan pihak NBR 24h kasih izin Xpander buat ikut balapan ke Nurburgring biar Porsche disitu semua DNF

We are investigating unauthorized access to GitHub’s internal repositories. While we currently have no evidence of impact to customer information stored outside of GitHub’s internal repositories (such as our customers’ enterprises, organizations, and repositories), we are closely monitoring our infrastructure for follow-on activity.