BY TOB • 6 MIN READ
LiteLLM Supply Chain Attack and Claude Code Auto Mode
The LiteLLM PyPI incident that hit 47k downloads, plus Claude Code's new permissions safety net.
Read moreBY TOB4 MIN READ
Axios Got Backdoored: What Developers Need to Know About the npm Supply Chain Attack
The popular HTTP client library Axios was compromised with a malicious dependency, affecting versions 1.14.1 and 0.30.4. Here's what happened and how to protect yourself.
Read more →
BY TOB • 5 MIN READ
AI Roundup: Litellm Supply Chain Hack, Massive MoE Models on Your Laptop, Cursor Gets Serious
A compromised PyPI package steals SSH keys, researchers run trillion-parameter models on 96GB RAM, and Cursor ships Composer 2 with automations.
Read more