🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

🚀 Introducing Socket MCP: real-time dependency scoring for AI-generated code. Stop risky packages at the prompt: 🔹 Fits naturally into AI-assisted workflows 🔹 Powered by Socket’s trusted depscore API 🔹 Checks supply chain risk, vulns, maintenance socket.dev/blog/socket-mcp

Developers are importing dependencies suggested by LLMs, often without knowing if those packages have supply chain risks, are vulnerable, unmaintained, or even real. Today, we're introducing Socket MCP: real-time dependency scoring inside the AI workflow.

🚨 PyPI malware alert: A single malicious #Python package is silently hijacking #Solana wallets by monkey-patching key generation. 5 decoy packages, 25K+ downloads, and the stolen keys are exfiltrated on-chain. Full research → socket.dev/blog/monkey-pa… #crypto #CyberSecurity

I’ve kinda wondered - with how fast AI is moving and being experimented with rapidly especially in the open source arena, just how many things like this are happening under the surface with nobody currently the wiser.

1/ We just caught four malicious npm packages trying to drain your crypto wallet. Obfuscated code. Russian email. Hardcoded wallet. Designed to steal up to 85% of your ETH or BNB — silently. 👇 Here’s how they did it & why it matters 🧵

Stay vigilant.

Proper due dilligence = supply chain safety. Stay safe chums.

It’s wild how fast opportunistic threat actors create these attacks. Just days after Vietnam banned Telegram, someone published malicious #Ruby gems to steal Telegram Messenger bot tokens from CI pipelines. cc: Short Ruby Newsletter Lucian Ghinda Pavel Durov

Make sure to check your dependencies And install Socket

Really excited that Socket is one of the first to support the awesome new Python lock file standard. pylock.toml is a really big step towards finally solving python package management woes!

Inflation explained. [🎞️ Primate Economics]

🫢