The Hacker News

Cline CLI 2.3.0 Supply Chain Attack Installed OpenClaw on Developer Systems

Cline CLI 2.3.0 was published with a stolen npm token, installing OpenClaw in an 8-hour attack affecting ~4,000 downloads.
How-To Geek on MSN

How I built the perfect programming platform in under 10 minutes

Building your perfect programming environment is easier than you think. Here's how to do it in minutes!
InfoQ

GitHub Copilot SDK Lets Developers Integrate Copilot CLI's Engine into Apps

Now available in technical preview on GitHub, the GitHub Copilot SDK lets developers embed the same engine that powers GitHub ...
GitHub

xsAI Transformers.js Provider

A special Transformers.js provider for xsai, the extra-small AI SDK. Capable of performing tasks of embedding, transcriptions, speech synthesis, and text generations right in the browser (Node.js ...
Technobezz on MSN

GitHub launches Copilot SDK to embed AI agents in applications

Embed AI agents into your apps with GitHub's new SDK, simplifying integration across Node.js, Python, Go, and .
The Hacker News

Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution

A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating ...
GitHub

Git Isometry for Node.js

NeoGit is a pure TS library serving as a readonly, high-performance alternative to isomorphic-git, addressing several issues (i.e. incorrect merge-base algorithm). IsoGit caches many things, including ...