Złośliwa paczka w NuGet podszywała się pod Stripe i kradła klucze API

Badacze z ReversingLabs odkryli złośliwą paczkę w NuGet (menedżer pakietów do .NET), która podszywa się pod Stripe[.]net – oryginalny pakiet, który został pobrany ponad 70 milionów razy. TLDR: Stripe to popularna bramka obsługująca wiele metod płatności, takich jak karty kredytowe czy subskrypcje. Ułatwia wdrażanie monetyzacji w wielu usługach/aplikacjach. Firma dostarcza...

#Aktualności #Dotnet #ŁańcuchDostaw #Stripe

https://sekurak.pl/zlosliwa-paczka-w-nuget-podszywala-sie-pod-stripe-i-kradla-klucze-api/

Złośliwa paczka w NuGet podszywała się pod Stripe i kradła klucze API https://sekurak.pl/zlosliwa-paczka-w-nuget-podszywala-sie-pod-stripe-i-kradla-klucze-api/ #Aktualnoci #Dotnet #acuchdostaw #Stripe

Today I achieved a working cross-platform interop between #dotnet and Haskell. I build a shared library (.dll/.so/.dylib) with GHC and use it from .NET via Haskell FFI.

Was quite a busy work to get it to build properly on Linux (of all things!), but in the end it all works, with tests on Haskell and .NET side: https://github.com/ForNeVeR/tabularius

Now, having that sorted, I can finally get to the implementation of the actual app features in the project.

Natural Keys in the Critter Stack https://jeremydmiller.com/2026/03/16/natural-keys-in-the-critter-stack/

#dotnet #marten #wolverine

Dot Net North is tomorrow night, in Manchester. We’ve got an interesting talk on Analytics, plus complimentary pizza and drinks. From 6pm. RSVP over on Meetup https://www.meetup.com/dotnetnorth/events/313540437/ #dotNET #TechEvents #MVPBuzz

Blogged: Things That Caught My Attention Last Week - March 15 https://bit.ly/47yi50G #dotnet

(1/2) My first foray into OpenTelemetry was disappointing. The UI's and broken tools are a mess.

- Bad consistency
- Dozens of packages required
- Spans seem to work 50% of the time

Notice just "postgresql". No details. I have to expand it to see them. Compare with the second screenshot where I see ACTUAL details without needing to expand.

As for spans, look at that "=> 4.41s". If I'm using OT that should be a Span instead of polluting the log entries?

#dotnet #programming #opentelemetry

Time you can fake, tests you can trust. This drop breaks down TimeProvider, plus a neat Aspire patch, zero-install .NET demos in the browser, and a swappable local voice AI pipeline. #dotnet #csharp #aspire

.NET drip - Saturday, March 14...

Windows App SDK Version 2.0 Experimental 6 (2.0.0-Experimental6) Release Notes | Microsoft Learn

https://learn.microsoft.com/windows/apps/windows-app-sdk/release-notes/windows-app-sdk-2-0?pivots=experimental#version-20-experimental-6-200-experimental6

#windowsdev #winui #dotnet #xaml #csharp #cpp #windowsappsdk #onnx #windowsai

The Avalonia WebView Is Going Open-Source

https://avaloniaui.net/blog/the-avalonia-webview-is-going-open-source

#avalonia #dotnet #xaml #csharp #oss #avaloniaui #crossplatform

Refactoring the heart of PowerToys from C++ to C# | by Noraa Junker

https://noraajunker.ch/PowerToys-refactor/

#powertoys #dotnet #csharp #cpp #softwaredev #windowsdev #windows

Dew Drop – March 16, 2026 (#4625)

https://www.alvinashcraft.com/2026/03/16/dew-drop-march-16-2026-4625/

#dotnet #webdev #csharp #windowsdev #ai #visualstudio #mobiledev #vscode #cloud #dewdrop

⚡️ Queues, topics, and reliable asynchrony

🏷️ #devdigest #dotnet #net #cloud #azure #aws

https://devdigest.today/goto/5809

닷넷 11에서 많은 개선이 예고되어있지만, 개인적으로는 dotnet run file.cs의 BuildLevel.Csc 최적화와 Runtime Async의 결합이 매우 기대됩니다.

이로서 NuGet 패키지 없이 BCL만 사용하는 단일 파일 C# 프로그램이 반복 실행 200ms~630ms의 성능을 달성하며, Python의 편의성과 Go의 배포 단순성, C#의 타입 안전성을 결합한 새로운 코딩 장르가 열리게 됩니다.

https://devwrite.ai/ko/posts/nuget-free-single-file-csharp/

#닷넷 #dotnet #run #async #runtime #async2

From the .NET blog...

In case you missed it earlier...

Modernize .NET Anywhere with GitHub Copilot
https://devblogs.microsoft.com/dotnet/modernize-dotnet-anywhere-with-ghcp/ #dotnet #AI #csharp #VisualStudio #VisualStudioCode #NETmodernization #DeveloperTools #GitHubCopilot #modernization

From the .NET blog...

In case you missed it earlier...

.NET 10.0.5 Out-of-Band Release – macOS Debugger Fix
https://devblogs.microsoft.com/dotnet/dotnet-10-0-5-oob-release-macos-debugger-fix/ #dotnet #MaintenanceUpdates #NET10 #Debugging #macos #OOB #VisualStudioCode

Validation Options in Wolverine https://jeremydmiller.com/2026/03/15/validation-options-in-wolverine/

#dotnet #wolverine

I have come full circle, from debugging with print statements, through debuggers, and back to debugging with print statements!

https://blog.lhotka.net/2026/03/15/Full-Circle-Development

#softwaredevelopment #ai #dotnet #claudecode #githubcopilot

I have come full circle, from debugging with print statements, through debuggers, and back to debugging with print statements! blog.lhotka.net/2026/03/15/F... #softwaredevelopment #ai #dotnet #claudecode #githubcopilot

Full Circle Development

I have a utilities package on #NuGet that I probably ought to write examples for. Should my example project be MVC or Web API or a CLI app? Presumably it ought to run? #dotnet