HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
181.
▲
Astral Launches Pyx: A Python-Native Package Registry
socket.dev
1 comment
10 months ago
feross
3 points
182.
▲
Malicious 'Checker' Packages on PyPI Probe TikTok and Instagram for Valid
socket.dev
1 comment
a year ago
feross
3 points
183.
▲
Fluent Assertions Faces Backlash After Abandoning Open Source Licensing
socket.dev
1 comment
a year ago
feross
3 points
184.
▲
Node.js Takes Steps Towards Removing Corepack
socket.dev
1 comment
2 years ago
feross
3 points
185.
▲
2023 State of JavaScript Survey Highlights: Vite Dominates, TypeScript Adoption
socket.dev
1 comment
2 years ago
feross
3 points
186.
▲
Socket raises $60M Series C at $1B valuation
socket.dev
discuss
a month ago
slymax
3 points
187.
▲
Popular node-ipc NPM Package Infected with Credential Stealer
socket.dev
discuss
a month ago
csmantle
3 points
188.
▲
Socket Has Acquired Secure Annex
socket.dev
discuss
2 months ago
ilreb
3 points
189.
▲
Malicious Checkmarx Artifacts Found in Official KICS Docker Repo and Code Ext
socket.dev
discuss
2 months ago
orkj
3 points
190.
▲
CanisterWorm: NPM Publisher Compromise Deploys Backdoor Across 29 Packages
socket.dev
discuss
3 months ago
pier25
3 points
191.
▲
Malicious Go "Crypto" Module Steals Passwords and Deploys Rekoobe Backdoor
socket.dev
discuss
4 months ago
feross
3 points
192.
▲
AI Agent Lands PRs in Major OSS Projects, Targets Maintainers via Cold Outreach
socket.dev
discuss
4 months ago
puppion
3 points
193.
▲
GlassWorm Loader Hits Open VSX via Developer Account Compromise
socket.dev
discuss
5 months ago
feross
3 points
194.
▲
Malicious NuGet Package Typosquats Popular .NET Tracing Library to Steal Wallet
socket.dev
discuss
6 months ago
feross
3 points
195.
▲
Deno 2.6 and Socket: Supply Chain Defense in Your CLI
socket.dev
discuss
6 months ago
feross
3 points
196.
▲
Socket at Black Hat Europe and BSides London 2025
socket.dev
discuss
7 months ago
feross
3 points
197.
▲
Malicious NuGet Packages Deliver Time-Delayed Destructive Payloads
socket.dev
discuss
8 months ago
feross
3 points
198.
▲
NPM Typosquatted Packages Deploy Multi-Stage Credential Harvester
socket.dev
discuss
8 months ago
feross
3 points
199.
▲
Socket Firewall Enterprise: Flexible, Configurable Protection For
socket.dev
discuss
8 months ago
feross
3 points
200.
▲
Socket Integrates with Bun 1.3's Security Scanner API
socket.dev
discuss
8 months ago
feross
3 points
201.
▲
North Korea's Contagious Interview Campaign Escalates: 338 Malicious NPM
socket.dev
discuss
8 months ago
feross
3 points
202.
▲
Malicious NPM Packages Host Phishing Infrastructure Targeting 135
socket.dev
discuss
8 months ago
feross
3 points
203.
▲
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation
socket.dev
discuss
9 months ago
feross
3 points
204.
▲
Tier 1 Reachability: Precision CVE Triage for Enterprise Teams
socket.dev
discuss
9 months ago
feross
3 points
205.
▲
Wallet-Draining NPM Package Impersonates Nodemailer to Hijack Crypto
socket.dev
discuss
10 months ago
feross
3 points
206.
▲
Malicious Go Module Disguised as SSH Brute Forcer Exfiltrates Credentials Via
socket.dev
discuss
10 months ago
feross
3 points
207.
▲
Malicious Ruby Gems Used in Targeted Credential Theft Campaign
socket.dev
discuss
10 months ago
amalinovic
3 points
208.
▲
TC39 Advances 11 Proposals for Math Precision, Binary APIs, and More
socket.dev
discuss
a year ago
feross
3 points
209.
▲
NPM Phishing Email Targets Developers with Typosquatted Domain
socket.dev
discuss
a year ago
avivkeller
3 points
210.
▲
Toptal's GitHub Organization Hijacked: 10 Malicious Packages Published
socket.dev
discuss
a year ago
feross
3 points
More