The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT via 31 Vercel deployments.

「GitHub Copilot CLI」が一般提供 ~ターミナルで動作するコーディング ...

「GitHub Copilot ...

macOS版に遅れること1カ月、OpenAIがWindows版「Codex」アプリをリリース

米OpenAIは3月4日(現地時間)、「Codex」アプリ(Codex app)をWindows向けにリリースした。macOSは1カ月前から提供中。 The Codex app is now on Windows. Get the full Codex app experience on Windows with a native agent sandbox and support for Win ...