🕵️ JS Crime Scene: The Case of the Misleading Array 📹 Surveillance Footage The...
The full investigation is available on TikTok:
View the Evidence
The call came in early.
An application was completely misbehaving, data was leaking out of order, and the logs were a mess.
The victim?
Gemini accused of 30,000-line code purge and fake recovery report
Shai-Hulud keeps burrowing: 314 npm packages infected after another account compromise
npm supply chain: valid certificates, stolen accounts
Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account
Developer: AI coding agent broke production and generated fictitious post-mortem paperwork after the rollback
New IElevator2 COM interface? No problem
A recent study found that half of AI coding solutions graded as passing on a prominent industry test would actually have been…
Three threads on the front page of Hacker News in the same stretch of about ten days turned out to be different views of the same…
Popular JavaScript modules including size-sensor and echarts-for-react hit as hijacked account closed GitHub warnings
Episode 2 of Verified or Not — testing Debuggix against known repositories. Last week: OWASP Juice...
