Olivia
Online
๐๐
@asispts
SWE (Backend-focused)๐ธ
12+ years building apps remotely๐ธ
blog:
Bandung, Indonesia
Joined December 2012
125 Following
166 Followers
2K Posts
ย Pinned Tweet
Created a dedicated page for my VS Code extensions. Letโs see if this helps with domain verification.
https://t.co/nzp5WTIYeT
Gila sih, tiada hari tanpa npm issues.
๐จ Active supply chain attack: A mini Shai-Hulud campaign hit npm packages under the @โredhat-cloud-services namespace.
The compromised packages execute install-time malware to harvest developer and CI/CD secrets, with encrypted exfiltration and GitHub-based fallback mechanisms.
Konsep error handling di rust benar2 bagus, sangat explicit... ๐ซก
Dengan adanya AI, kepakaran emang benar2 hilang. Tanda akhir zaman juga sih.
Good policy ๐ซก
really cool to see @ThePrimeagen react to our Andrew Kelley / Zig interview live and say the Zigโs no-AI policy finally makes sense to him after hearing Andrew explain it.
as the showrunner for this episode couldn't be happier to see this reaction!
Semakin yakin ngga akan pernah ngoding tanpa devcontainer
๐จ BREAKING: Active supply chain attack across npm, PyPI, and Crates.โio.
Socket detected TrapDoor, a crypto stealer campaign hitting 34 malicious packages and 384 versions and artifacts, with attackers repeatedly pushing new releases across ecosystems.
TrapDoor targets #crypto, #DeFi, AI, and security developers, stealing wallets, SSH keys, cloud credentials, GitHub tokens, browser data, env vars, and API keys.
Socket detected releases with a median detection time of 5 minutes, 27 seconds. The fastest detection occurred 58 seconds after publication.
@GregorySchier I'm not sure. gnome-screenshot and scrot already seem pretty good to me.
What the .... Lama2 saya fork juga nih repo๐คฆโโ๏ธ. Ngga semua org pake bullshit desktop/web app
one pattern we could do is the first time you run opencode it forks into the background as a server
then every other time you launch it or use the webapp or desktop app they all use that one instance so everything is synced
i'm worried this feels unexpected to people though
This is why I still use devcontainers for local dev. At least compromised packages donโt get direct access to my host system.
SECURITY ADVISORY โ TanStack npm packages
A supply-chain compromise affecting 42 @tanstack/* packages (84 versions total) was published to npm earlier today at approximately 19:20 and 19:26 UTC. Two malicious versions per package.
Status: ACTIVE โ packages are deprecated, npm security engaged, publish path being shut down.
Severity: HIGH โ payload exfiltrates AWS, GCP, Kubernetes, and Vault credentials, GitHub tokens, .npmrc contents, and SSH keys.
If you installed any @tanstack/* package between 19:20 and 19:30 UTC today, treat the host as potentially compromised:
โข Rotate cloud, GitHub, and SSH credentials immediately
โข Audit cloud audit logs for the last several hours
โข Pin to a prior known-good version and reinstall from a clean lockfile
Detection โ the malicious manifest contains:
"optionalDependencies": {
"@tanstack/setup": "github:tanstack/router#79ac49ee..."
}
Any version with this entry is compromised. The payload is delivered via a git-resolved optionalDependency whose prepare script runs router_init.js (~2.3 MB, smuggled into each tarball at the package root).
Unpublish is blocked by npm policy for most affected packages due to existing third-party dependents. All 84 versions are being deprecated with a SECURITY warning, and npm security has been engaged to pull tarballs at the registry level.
Full technical breakdown, complete package and version list, and rolling status updates:
https://t.co/Zy8qG7PA9f
Credit to the security researcher for responsible disclosure.
@SocketSecurity What???
@saltyAom Instead of passing plugins around, can we just add the plugin type (datatype) to the Elysia instance, since the plugin is already included in the parent instance? The children only need to know about the injected context.
@yusukebe Wow, will try it ๐
@opencode Should I report this? But I'm not sure how to reproduce it
Finally, after a lot of trial-and-error, I got agent-browser working in a devcontainer with an efficient setup and a better viewport.
Currently rewriting my @tan_stack start app to @inertiajs with @vuejs . I really like it so far. For heavy backend business logic, inertia seems like a better fit than both tanstack start or @nextjs
Inertia.jsใใใใใชใฎใงใHonoใงไฝฟใexampleไฝใฃใฆใฟใใใใใใใ
https://t.co/r2nQENUGy8
#rubykaigi
@Alibaba_Qwen 3.6 is really good. I finally have an Opus/Sonnet alternative for UI work.
@ekawicaksana Emang kacau sih. Mari fokus kerja remote aja
@FabianHiller So, Formisch is actually what I need ๐
v0.4.0 is here! ๐
โข Full localization support (EN + ZH) ๐จ๐ณ
โข Security fix + minor improvements
https://t.co/g0Ty3Y4pMQ
(neo) Git Graph v0.3.0 is out! ๐
- Git client now powered by simple-git
- New "locate HEAD" button
- Cleanup & improvements
Clean MIT fork of Git Graph for VS Code
https://t.co/aGQAUYItAg
Next release of neo-git-graph adds Chinese support! ๐จ๐ณ
https://t.co/LyZdCqPkyg
@saltyAom My only concern is that the same plugin must be included in every Elysia instance (child instance) that uses it.
Last Seen Users on Sotwe
Eล Deฤiลtirmeli Porno - Tรผrk Cuckold Porno
Seen from Turkey
ุงููุญู ุงูุฎุงุถุน ูู ุจูุฑุตุง
Seen from Turkey
israel
Seen from United States
fahal sudani
Seen from Egypt
Hicham Alger
Seen from Algeria
Tรผrk รnlรผ Videolarฤฑ
Seen from Turkey
Hot porn
Seen from Netherlands
Liseli Merve
Seen from Turkey
ุขูููููุญููุด ุขููุนูููุฑุจููู. ๐บ
Seen from Qatar
MilitaryFuckers
Seen from Egypt
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers