Olivia
Online
Nicolas Ramirez
@nicoramirezdev
Software Engineer and Composer.
Seville, Spain
Joined December 2021
391 Following
87 Followers
830 Posts
Google CEO tries to tell University students to love AI.
They tell him to BOO off.
This is what most people think of the hated AI, we don't want it.
The moment the robot passed the human worker, because the human had to take a bathroom break
SECURITY ADVISORY — TanStack npm packages
A supply-chain compromise affecting 42 @tanstack/* packages (84 versions total) was published to npm earlier today at approximately 19:20 and 19:26 UTC. Two malicious versions per package.
Status: ACTIVE — packages are deprecated, npm security engaged, publish path being shut down.
Severity: HIGH — payload exfiltrates AWS, GCP, Kubernetes, and Vault credentials, GitHub tokens, .npmrc contents, and SSH keys.
If you installed any @tanstack/* package between 19:20 and 19:30 UTC today, treat the host as potentially compromised:
• Rotate cloud, GitHub, and SSH credentials immediately
• Audit cloud audit logs for the last several hours
• Pin to a prior known-good version and reinstall from a clean lockfile
Detection — the malicious manifest contains:
"optionalDependencies": {
"@tanstack/setup": "github:tanstack/router#79ac49ee..."
}
Any version with this entry is compromised. The payload is delivered via a git-resolved optionalDependency whose prepare script runs router_init.js (~2.3 MB, smuggled into each tarball at the package root).
Unpublish is blocked by npm policy for most affected packages due to existing third-party dependents. All 84 versions are being deprecated with a SECURITY warning, and npm security has been engaged to pull tarballs at the registry level.
Full technical breakdown, complete package and version list, and rolling status updates:
https://t.co/Zy8qG7PA9f
Credit to the security researcher for responsible disclosure.
@waitbutwhy One presses blue for the greater good, red for selfishness
First trailer for the ‘HARRY POTTER’ series.
Releasing this Christmas on HBO.
@Adidotdev In order to understand systems you need to at least understand how code works. Is not one or the other, you need both, and code is fondational
@AmanVirk1 I think you can add your own tables and schema to payloadcms V3, although I haven't tried
@5eniorDeveloper Pobres diablos jajaja
@sysxplore MacOS for work, Windows for gaming. Since I am using WSL Ubuntu on Windows I can get by without touching my Linux machine for development
Yes, and that can become expensive quickly. Are you doing only e2e tests? They take time to setup and run, environments isolated from production cost money. I have seen test suites take one hour+ to run. Performance testing can be even more troublesome. Are you going to invest in every feature the same amount of tests/care? Not every feature deserves that level of investing. Can you expand on what your approach would be?
@tzhechev @edandersen Testing is always about tradeoffs. If you have a large and expensive test suite it is going to impact your development flow. It is not reasonable to expect 100% of edge cases to be tested 100% of the time. The test would require 10x more care than the source code.
@FPupusas @TheVolun @ThePrimeagen Nah, reliance on multiple agents turn you away from your codebase in a way other factors would not. If you are ok with it, that's fine too
@AndrewYang How does abundance look like as an end state? Hard to build something without defining it
@asmah2107 What are you building that requires orchestration between agents? Genuinely curious
@devruso Por eso mismo, saben cómo protegerse de scrappers, saben cómo funcionan. Seguro don equipos diferentes en competencia, pensándolo bien.
@mitchellh @thdxr Unless you are in a big corp, does it make sense to use AWS directly? For my hobby projects I get by with a VPS on Digital Ocean or Linode.
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers