Top Tweets for #Hugops
To all operators trying to cool down datacenters like us, #hugops
JUST IN: France records its hottest day on record at 44.3°C (111.7°F) as a brutal heat wave scorches Europe.
#HugOps an Mitarbeiter:innen im Betrieb des GSM-R-Netzes der Deutschen Bahn. Nicht das geilste Wetter für ein paar schlaflose Nächte und „wie konnte das passieren‽“-Krisenmeetings.
Cross-customer data leaks are situations where the best possible response is often to intentionally take your systems down until it's resolved. Yikes. #hugops
holy shit - their api is leaking customer data
#hugops to my flicker friends :/
(works in https://t.co/oUoqqL9hAp, scnr)
"Use our harness for a better experience and subsidized inference." Well here's Slopus in its native habitat, Claude Code. How much of that subsidized inference did I waste on this unrecoverable 14-point code review session?
#HugOps, everyone.
This is someone who gets it. #hugops
#HugOps to the TanStack team, be safe out there y’all 🫂
SECURITY ADVISORY — TanStack npm packages
A supply-chain compromise affecting 42 @tanstack/* packages (84 versions total) was published to npm earlier today at approximately 19:20 and 19:26 UTC. Two malicious versions per package.
Status: ACTIVE — packages are deprecated, npm security engaged, publish path being shut down.
Severity: HIGH — payload exfiltrates AWS, GCP, Kubernetes, and Vault credentials, GitHub tokens, .npmrc contents, and SSH keys.
If you installed any @tanstack/* package between 19:20 and 19:30 UTC today, treat the host as potentially compromised:
• Rotate cloud, GitHub, and SSH credentials immediately
• Audit cloud audit logs for the last several hours
• Pin to a prior known-good version and reinstall from a clean lockfile
Detection — the malicious manifest contains:
"optionalDependencies": {
"@tanstack/setup": "github:tanstack/router#79ac49ee..."
}
Any version with this entry is compromised. The payload is delivered via a git-resolved optionalDependency whose prepare script runs router_init.js (~2.3 MB, smuggled into each tarball at the package root).
Unpublish is blocked by npm policy for most affected packages due to existing third-party dependents. All 84 versions are being deprecated with a SECURITY warning, and npm security has been engaged to pull tarballs at the registry level.
Full technical breakdown, complete package and version list, and rolling status updates:
https://t.co/Zy8qG7PA9f
Credit to the security researcher for responsible disclosure.
AWS just dropped five updates packed with new AI and cloud features.
We break down what you need to know.
I’d have a lot more sympathy for GitHub outages if they didn’t spend so much corporate energy shoving Copilot everywhere. It *feels* as if that’s taken over from pedestrian concerns such as “ensure the platform remains stable.”
#hugops
Last Seen Hashtags on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.5M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.4M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.5M followers
Taylor Swift
@taylorswift13
81.4M followers
Lady Gaga
@ladygaga
72.9M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.7M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.8M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.6M followers