Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
|
from
login
The Supply Chain Nightmare Before Deployment
(
socket.dev
)
2 points
by
feross
6 days ago
|
past
|
1 comment
Malicious NuGet Package Typosquats Popular .NET Tracing Library to Steal Wallet
(
socket.dev
)
3 points
by
feross
7 days ago
|
past
|
discuss
Deno 2.6 and Socket: Supply Chain Defense in Your CLI
(
socket.dev
)
3 points
by
feross
9 days ago
|
past
|
discuss
Software Engineering Daily Podcast: Feross on AI, Open Source, and Supply Chain
(
socket.dev
)
1 point
by
feross
10 days ago
|
past
|
discuss
NPM Revokes Classic Tokens, as OpenJS Warns Maintainers About OIDC Gaps
(
socket.dev
)
3 points
by
feross
12 days ago
|
past
|
1 comment
Rust RFC Proposes a Security Tab on Crates.io for RustSec Advisories
(
socket.dev
)
2 points
by
feross
13 days ago
|
past
|
discuss
Malicious Crate Mimicking 'Finch' Exfiltrates Credentials via a Hidden
(
socket.dev
)
2 points
by
feross
17 days ago
|
past
Malicious Go Packages Impersonate Google's UUID Library and Exfiltrate Data
(
socket.dev
)
7 points
by
feross
17 days ago
|
past
November CVEs Fell 25% YoY, Driven by Slowdowns at Major CNAs
(
socket.dev
)
2 points
by
feross
17 days ago
|
past
Critical Security Vulnerability in React Server Components
(
socket.dev
)
4 points
by
feross
18 days ago
|
past
Scaling Socket from Zero to 10k Organizations
(
socket.dev
)
2 points
by
feross
20 days ago
|
past
The GitHub Infrastructure Powering North Korea's Contagious Interview NPM Attack
(
socket.dev
)
10 points
by
giuliomagnifico
23 days ago
|
past
|
1 comment
The GitHub Infrastructure Powering North Korea's Contagious Interview NPM
(
socket.dev
)
2 points
by
feross
25 days ago
|
past
Shai-Hulud Strikes Again, Again. (NPM Supply Chain Attack)
(
socket.dev
)
3 points
by
pvtmert
28 days ago
|
past
|
1 comment
Webhook Events for Alert Changes
(
socket.dev
)
2 points
by
feross
31 days ago
|
past
Socket Certified Patches: One-Click Fixes for Vulnerable Dependencies
(
socket.dev
)
2 points
by
feross
34 days ago
|
past
Another Round of Tea Protocol Spam Floods NPM, but It's Not a Worm
(
socket.dev
)
1 point
by
feross
37 days ago
|
past
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
(
socket.dev
)
2 points
by
feross
39 days ago
|
past
Socket at Black Hat Europe and BSides London 2025
(
socket.dev
)
3 points
by
feross
41 days ago
|
past
Malicious NuGet Packages Deliver Time-Delayed Destructive Payloads
(
socket.dev
)
3 points
by
feross
45 days ago
|
past
How Enterprise Security Is Adapting to AI-Accelerated Threats
(
socket.dev
)
2 points
by
feross
47 days ago
|
past
MIT-Linked Report Claiming AI Powers 80% of Ransomware
(
socket.dev
)
1 point
by
DyslexicAtheist
51 days ago
|
past
|
1 comment
Security Community Slams MIT-Linked Report Claiming AI Powers 80% of Ransomware
(
socket.dev
)
5 points
by
bediger4000
51 days ago
|
past
|
2 comments
The Changelog Podcast: Practical Steps to Stay Safe on NPM
(
socket.dev
)
2 points
by
feross
52 days ago
|
past
Ruby Core Team Assumes Stewardship of RubyGems and Bundler, Former Maintainers
(
socket.dev
)
3 points
by
feross
53 days ago
|
past
|
1 comment
NPM Typosquatted Packages Deploy Multi-Stage Credential Harvester
(
socket.dev
)
3 points
by
feross
55 days ago
|
past
Socket Firewall Enterprise: Flexible, Configurable Protection For
(
socket.dev
)
3 points
by
feross
59 days ago
|
past
New CNAPulse Dashboard Tracks CNA Activity and Disclosure Trends
(
socket.dev
)
2 points
by
feross
59 days ago
|
past
GitHub Actions Scanning Support
(
socket.dev
)
2 points
by
feross
60 days ago
|
past
Unify Your Security Stack with Socket Basics
(
socket.dev
)
1 point
by
feross
62 days ago
|
past
More
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
