If you use GitHub (especially if you pay for it!!) consider doing this *immediately* Settings -> Privacy -> Disallow GitHub to train their models on your code. GitHub opted *everyone* into training. No matter if you pay for the service (like I do). WTH github.com/settings/copil…

JUST IN: House Republicans rejected a Senate deal to reopen the Department of Homeland Security as a government shutdown crippled airport travel, per NYT

::sigh:: clones

AI taking over jobs is a #FirstWorld problem.

🚨‼️ BREAKING: Databricks allegedly compromised in a TeamPCP supply chain attack. Databricks is the leading cloud-based data analytics platform: used by organizations worldwide to manage massive datasets. We notified them last week. They scaled up to investigate. We haven't

🚨 Active supply chain attack on [email protected]. The latest version pulls in [email protected] -- a brand-new package that didn't exist before today. Socket's AI analysis flags it as a malicious obfuscated dropper: runtime deobfuscation, dynamic execSync loading, payload

Been saying this. Dont know why people are buying crypto with classical cryptography

🚨 ACTIVE SUPPLY CHAIN ATTACK Two malicious versions of `axios`, the npm package with 300M+ weekly downloads, were just published via a hijacked maintainer account and have deployed a cross-platform RAT to affected machines. Affected: `[email protected]` and `[email protected]` 👇🧵

Les vibecoders qui voient tout le monde parler du dangereux hack npm mais n’y comprennent rien du tout :

"CLAUDE I ALREADY ASKED YOU 3 TIMES AND YOU KEEP GETTING IT WRONG, THINK LIKE A SOFTWARE ENGINEER AND FIX THIS BUG, MAKE NO MISTAKES"

URGENT PSA - New supply chain attack vector that I found WILD > AI LLMs hallucinate package names roughly 18-21% of the time. Hackers have started pre-registering those hallucinated names on PyPI and npm with malicious payloads; they call it "slopsquatting" You can only imagine

JUST IN: U.S. student loan delinquency and defaults hit record high

Introducing Project Glasswing: an urgent initiative to help secure the world’s most critical software. It’s powered by our newest frontier model, Claude Mythos Preview, which can find software vulnerabilities better than all but the most skilled humans. anthropic.com/glasswing

JUST IN: Anthropic says Claude Mythos found a 27-year-old OpenBSD vulnerability in one of the world’s most security-hardened operating systems.

BREAKING: Businesses can claim refunds starting today for Trump tariffs declared unconstitutional, per AP

"GIFTING PROJECT MIRAMAR" is a package from Fanatics ONE.

Donald Trump has fired the entire National Science Board, all 24 members, all at once. The board was responsible for deciding which scientific projects America should pursue and helping to direct the nation's technological future.

Cal, Judge, Schwarber, Ohtani?

Gas reaches $7.89 for regular in South San Francisco.