HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
61.
▲
Socket Firewall: Free, Proactive Protection for Your Software Supply
socket.dev
discuss
9 months ago
feross
8 points
62.
▲
Rust Support in Socket
socket.dev
discuss
a year ago
feross
8 points
63.
▲
Python Adopts Standard Lock File Format for Reproducible Installs
socket.dev
discuss
a year ago
feross
8 points
64.
▲
PyPI Now Supports iOS and Android Wheels for Mobile Python Development
socket.dev
discuss
a year ago
feross
8 points
65.
▲
"Valkey" Open Source Redis Fork Backed by Linux Foundation, Amazon, Google
socket.dev
discuss
2 years ago
feross
8 points
66.
▲
Judicious JSON
socket.dev
discuss
2 years ago
feross
8 points
67.
▲
.NET Support in Socket
socket.dev
2 comments
a year ago
feross
7 points
68.
▲
Widespread Trivvy GitHub Actions Tag Compromise Exposes CI/CD Secrets
socket.dev
1 comment
3 months ago
donutshop
7 points
69.
▲
Potemkin Understanding in LLMs: New Study Reveals Flaws in AI Benchmarks
socket.dev
1 comment
a year ago
akyuu
7 points
70.
▲
The Growing Risk of Malicious Browser Extensions
socket.dev
1 comment
a year ago
feross
7 points
71.
▲
Malicious Chrome Extension Steals MEXC API Keys for Account Takeover
socket.dev
discuss
5 months ago
feross
7 points
72.
▲
Malicious Go Packages Impersonate Google's UUID Library and Exfiltrate Data
socket.dev
discuss
7 months ago
feross
7 points
73.
▲
NPM 'Is' Package Hijacked in Expanding Supply Chain Attack
socket.dev
discuss
a year ago
choult
7 points
74.
▲
TC39 advances proposals for RegExp Escaping, Float16Array, Redeclarable vars
socket.dev
discuss
a year ago
feross
7 points
75.
▲
North Korean Apt Lazarus Targets Developers with Malicious NPM Package
socket.dev
discuss
a year ago
feross
7 points
76.
▲
Over 20,000 backdoored NPM, PyPI, and Go packages detected by Socket
socket.dev
discuss
2 years ago
feross
7 points
77.
▲
Tanstack NPM Packages Compromised in Ongoing Supply-Chain Attack
socket.dev
1 comment
a month ago
pier25
6 points
78.
▲
React Team Updates CRA Migration Guidance After Community Pushback
socket.dev
1 comment
a year ago
feross
6 points
79.
▲
108 Chrome Extensions Linked to Data Exfiltration and Session Theft via C2
socket.dev
discuss
2 months ago
jbegley
6 points
80.
▲
The Hidden Blast Radius of the Axios Compromise
socket.dev
discuss
3 months ago
feross
6 points
81.
▲
Enisa Technical Advisory on Secure Use of Package Managers
socket.dev
discuss
3 months ago
pier25
6 points
82.
▲
Python 3.14 Released with Template String Literals, Deferred Annotations, and
socket.dev
discuss
8 months ago
feross
6 points
83.
▲
PodRocket Podcast: Inside the Recent NPM Supply Chain Attacks
socket.dev
discuss
9 months ago
feross
6 points
84.
▲
Django Joins Curl in Pushing Back on AI Slop Security Reports
socket.dev
discuss
a year ago
feross
6 points
85.
▲
Repository Labels and Security Policies
socket.dev
discuss
a year ago
feross
6 points
86.
▲
Obfuscation 101: Unmasking the Tricks Behind Malicious Code
socket.dev
discuss
a year ago
feross
6 points
87.
▲
Deno 2.2 Improves Dependency Management and Expands Node.js Compatibility
socket.dev
discuss
a year ago
feross
6 points
88.
▲
Linux Foundation Warns Open Source Developers: Compliance with Sanctions Is Not
socket.dev
discuss
a year ago
feross
6 points
89.
▲
CISA Announces Initiative to Fortify Security of Open Source Package Registries
socket.dev
discuss
2 years ago
feross
6 points
90.
▲
Trivy Supply Chain Attack Expands to Compromised Docker Images
socket.dev
3 comments
3 months ago
feross
5 points
More