Hackernews posts about Mali

1. GitHub confirms breach of 3,800 repos via malicious VSCode extension (www.bleepingcomputer.com)
   1037 points by Timofeibu 3 days ago | 455 comments
2. Malicious Postinstall Hook Found in 700 GitHub Repos, Including Node Projects (socket.dev)
   12 points by 882542F3884314B about 7 hours ago | 4 comments
3. Om Malik – What Microsoft's 10-Q Says About OpenAI (om.co)
   11 points by rmason 22 days ago | discuss
4. Mozilla's buzz around Mythos is disingenuous at best, and malicious at worst (ghidravevo.substack.com)
   10 points by ghidravevo 15 days ago | discuss
5. SilentGlass actively blocks malicious HDMI and Display Port connections (www.ncsc.gov.uk)
   7 points by urban_winter 29 days ago | 5 comments
6. Malicious node-IPC Versions Published to NPM (github.com)
   6 points by varunsharma07 9 days ago | 2 comments
7. Tanstack Malicious Code was a college student with Google Antigravity (twitter.com)
   6 points by amrrs 22 days ago | discuss
8. Linux 7.1 Supports Newer Logitech BT Keyboards, Malicious Input Sanitization (www.phoronix.com)
   5 points by Bender 8 days ago | discuss
9. The "Megalodon" Campaign: 5718 malicious commits to 5561 GitHub repos (xcancel.com)
   4 points by theanonymousone 1 day ago | discuss
10. Tell HN: Packj flags malicious/risky open-source packages (github.com)
    3 points by my2c about 14 hours ago | discuss
11. Show HN: IDEViewer – Security scanner for malicious IDE Extensions (github.com)
    3 points by securient 1 day ago | discuss
12. Show HN: HookGuard – scanner for malicious Claude.md and agent config files (github.com)
    3 points by MerriBan 10 days ago | discuss
13. Mali's Tuareg rebels announce deal for Russian Africa Corps withdrawal (www.france24.com)
    3 points by mooreds 27 days ago | discuss
14. Malicious node-IPC versions published to NPM (www.stepsecurity.io)
    2 points by rvz 7 days ago | discuss
15. The era of "malicious compliance" in AI identity is here (arielsakin.substack.com)
    2 points by asakin 25 days ago | discuss
16. Residual Malicious Payloads on HackerOne After Vulnerability Fixes (hackerone.com)
    2 points by nathan84 28 days ago | discuss
17. Show HN: Computer Police – block malicious NPM/pip installs locally (computer.police.dev)
    1 points by kannthu 1 day ago | 2 comments
18. Shai Hulud attack ships signed malicious TanStack, Mistral NPM packages (www.bleepingcomputer.com)
    1 points by Brajeshwar 11 days ago | discuss
19. MiniRAT: A Go-based macOS RAT delivered via malicious NPM package (www.iru.com)
    1 points by ZeidJ 23 days ago | discuss
20. Docker Hub detects and quarantines malicious Checkmarx/kics images (www.docker.com)
    1 points by bmitch3020 29 days ago | discuss
21. Malicious Checkmarx Artifacts Found in Official KICS Docker Repository (socket.dev)
    1 points by darkwater 30 days ago | discuss
22. Show HN: Mochi.js: bun-native high-fidelity browser automation library (mochijs.com)
    47 points by ccheshirecat 14 days ago | 20 comments
23. We scanned 100 Smithery MCP servers, 22 flagged, here's what we found
    5 points by chaksaray 22 days ago | 6 comments
24. Ask HN: How are you stopping supply chain attacks via compromised dev keys?
    5 points by CountVonGuetzli 24 days ago | discuss
25. Can one run AI on source code with the prompt "Find below-avg swear rate files"?
    3 points by pcwir 2 days ago | 2 comments
26. Darknet Map
    3 points by KAGEjin 15 days ago | 1 comments
27. Show HN: Give This Markdown to Your Coding Agent Before Publishing to NPM
    3 points by freakynit 3 days ago | discuss
28. Show HN: Stigmem – open-source federated knowledge fabric for AI agents (v1.0)
    3 points by barryjones20 19 days ago | discuss
29. Show HN: AgentShield – Stop AI agents from spending money unsupervised (agentshieldv2-dashboard-production.up.railway.app)
    2 points by lucarizzo1010 4 days ago | 1 comments
30. Show HN: Routiium – self-hosted LLM gateway with a tool-result guard (github.com)
    2 points by deadpixel 28 days ago | discuss