Hoodline

AI Agent Attack on Matplotlib Maintainer Rattles Silicon Valley

According to GitHub, the PR was marked as a first-time contribution and closed by a Matplotlib maintainer within hours, as ...

It’s Probably a Bit Much to Say This AI Agent Cyberbullied a Developer By Blogging About Him

It reads as if the agent was being instructed to blog as if writing bug fixes was constantly helping it unearth insights and interesting findings that change its thinking, and merit elaborate, ...

Open source registries don't have enough money to implement basic security

Free beer is great. Securing the keg costs money fosdem 2026 Open source registries are in financial peril, a co-founder of ...

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...
GamingOnLinux

Prefixer is a modern alternative to Protontricks that's faster and simpler

Protontricks is a useful tool for Linux gaming, but it's a bit on the slow and complicated side that Prefixer aims to solve.
CNX Software

Olimex HoT aims to be lightweight, easier-to-use alternative to Home Assistant

Olimex HoT (Home of Things) is a lightweight Smart Home solution designed to run on low-end hardware (128MB RAM, 128MB flash) ...

So yeah, I vibe-coded a log colorizer—and I feel good about it

Oh, sure, I can “code.” That is, I can flail my way through a block of (relatively simple) pseudocode and follow the flow. I ...
The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...
Electronics For You

Time Lapse Timed Photography On MaixCam Board

Everything changes with time. Some changes happen so rapidly — like 7 frames or more per second — that we perceive them as ...
Dark Reading

OpenClaw's Gregarious Insecurities Make Safe Usage Difficult

Malicious "skills" and persnickety configuration are just a few issues that security researchers have found when installing the OpenClaw AI assistant.
InfoWorld

Beyond NPM: What you need to know about JSR

Here's how the JavaScript Registry evolves makes building, sharing, and using JavaScript packages simpler and more secure ...
Information Age

North Korean hackers pose as tech recruiters

The FBI warned in 2023 that “thousands of skilled IT workers” were moving abroad from North Korea and setting up as freelance IT professionals, warning recruiters to be wary of remote workers who ...