I'm excited to share that @SocketSecurity has raised $40M in Series B funding led by @AbstractVC! We're securing open source software at scale and have so much more to achieve on our mission. A big thank you to the 1M+ developers who trust our platform to secure your code!.

RT @david_perell: It seems like there’s an overwhelming amount of good content on the Internet, but every time somebody publishes something….

RT @SocketSecurity: 🚨 Attackers have hijacked the npm 'is' package (~2.8M weekly downloads), adding a malicious JS loader. This compromise….

RT @SocketSecurity: 🚨 A critical vulnerability in the widely used npm form-data package could allow HTTP Parameter Pollution, potentially i….

RT @SocketSecurity: Bun 1.2.19 introduces isolated installs for monorepos, smarter package management, and 5x faster Bun.sql. 🎉 Congrats to….

RT @HackRead: 🚨 A fake npm website tricked a maintainer into giving up their token, letting attackers push malware into popular JS packages….

RT @SocketSecurity: 🚨 Active supply chain attack on #npm: Multiple Prettier tooling packages were compromised through the phishing campaign….

RT @SocketSecurity: 🦀 Rust is the latest open source ecosystem to adopt Trusted Publishing, joining PyPI and RubyGems in moving away from l….

RT @SocketSecurity: 🚨 UPDATE: Socket's Threat Research Team continues tracking the spread of protestware targeting Russian language users.….

RT @feross: Use .

RT @SocketSecurity: 🚨 New research: North Korea’s Contagious Interview campaign is back, with 67 new malicious npm packages, a new malware….

RT @feross: Socket revenue 3x’d in the last year. We’re growing like crazy. And this is the best engineering team I’ve ever worked with — b….

RT @SocketSecurity: In Vegas for Black Hat or DEF CON? We're hosting 1:1s with @feross and the next edition of the much-loved Campfire Stor….

RT @FitFounder: The best way to manage your emotions is to get a workout every single day.

RT @HeatherMeeker4: PHP License Metamorphoses to BSD

RT @readswithravi: Clarity comes from action.

Awesome research from the team at @AliasRobotics!.

RT @RaisinTen: CI Reliability is becoming a @nodejs Strategic Initiative. Interested in leading it? Volunteer here:.

AI models just don't understand what they're talking about via @TheRegister.

RT @SocketSecurity: 🦀 Rust continues to reshape #JavaScript frontend tooling. @Browserslist-rs just got a major performance optimization: i….

This paper captured my curiosity. "Potemkin Understanding" aptly describes a frustration we all experience daily: an LLM sounds like it understands but can't apply what it knows. A few years from now, we’ll look back on these early days with a better lexicon for what was missing.