Wednesday vibes in Mauritius Cap Malheureux on the north coast of the Island

🚨 There’s a large-scale supply chain attack in progress: the NPM account of a reputable developer has been compromised. The affected packages have already been downloaded over 1 billion times, meaning the entire JavaScript ecosystem may be at risk. The malicious payload works

Do yourself a favor and set this in your pnpm config

API Platform L’équipe a donc travaillé à une extension FrankenPHP afin qu’il devienne un serveur gRPC. Le projet est encore early, finira par gérer le proto file, mais est testable depuis un dépôt de Kévin Dunglas #apiplatformcon

Maltrail : un système de détection de trafic réseau malveillant Open Source qui utilise à la fois des listes noires publiques et des mécanismes heuristiques pour repérer des comportements suspects. 👉 Le projet : github.com/stamparm/maltr…

And it continues. Documentation "disappeared". Only available for enterprise users.

🆘 3 chavirages en Ocean Fifty TRANSAT CAFÉ L’OR la nuit dernière dont 2 pris en charge par les #SauveteursenMer 🆘 Le 1er vers 22h30 dans le Raz Blanchard pour Lazare x Hellio 🌊 Les 2 marins ont été hélitreuillés & leur bateau a été pris en charge par la #SNSM Goury La Hague 🚨

#SauvetageEnMer | Trois chavirages en quelques heures lors de la #TransatCaféLOr ! ⚡ Parmi eux, les skippers Erwan Le Draoulec et Tanguy Le Turquais et leur trimaran Lazare x Hellio, remorqué jusqu’à Cherbourg après son chavirage au large de La Hague. SNSM

Vous avez connu l’époque où on copiait les scripts sur un FTP avec FileZilla ? Pas de CI/CD, pas de rollback, juste l'amour du risque...

Multiple, serious security vulnerabilities found in the Rust clone of Sudo — which shipped with Ubuntu 25.10 (the most recent release). Not little vulnerabilities: We’re talking about the disclosure of passwords and total bypassing of authentication. In fact, we’re getting new

Golden Hour in Mauritius 😍

We disrupted a highly sophisticated AI-led espionage campaign. The attack targeted large tech companies, financial institutions, chemical manufacturing companies, and government agencies. We assess with high confidence that the threat actor was a Chinese state-sponsored group.

Au tour de GitHub..

RIP Jimmy Cliff (30 Jul 1944 - 24 Nov 2025) Legend of #Jamaican Music, born James Chambers in Somerton, St. James. #Jamaica’s first home-grown global star.#JimmyCliff #reggae #ska #Caribbean en.wikipedia.org/wiki/Jimmy_Cli…

Minio is now in maintenance mode 🥲

A critical vulnerability in React Server Components (CVE-2025-55182) affects React 19 and frameworks, including Next.js (CVE-2025-66478). All users should upgrade to the latest patched version in their release line. nextjs.org/cve-2025-66478

Ne paniquez pas, mais Crucial se retire du marché des barrettes de RAM et des SSD grand public. Ok, paniquez.

🚨 Over 137,000 servers are wide open. Hackers are using the React2Shell bug (CVE-2025-55182) to take over web servers — no password needed. Even U.S. government sites are being hit, and the attacks are spreading fast through Next.js apps online. If your team hasn’t patched

A fast and easy to use database for logs, which can efficiently handle terabytes of logs #golang github.com/VictoriaMetric…

Host your own reMarkable cloud github.com/ddvk/rmfakeclo…