Anthropic's Claude Code source has leaked via a packaging error, exposing anti-distillation traps, an undercover mode, and scaffolding for an unreleased agent.

The leak provides competitors—from established giants to nimble rivals like Cursor—a literal blueprint for how to build a ...

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...

It is exactly this backdoor that had Google conclude this was a North Korea-sponsored campaign. GTIG said WAVESHAPER.V2 is an ...

The maintainer account for the axios package on npm was compromised to inject a remote access trojan for Windows, macOS, and ...

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.

The open-source database RxDB 17 now synchronizes data directly via Google Drive or OneDrive – developers no longer need ...

Free cryptographically verified code quality scoring for software procurement. The best software wins. Not the best ...

Explore Homebrew Statistics to uncover key usage trends, installs, and growth insights that help developers make smarter ...