Lmst

#Washington family's home flooded with unwanted #Amazon #packages

https://www.upi.com/Odd_News/2025/12/15/unwanted-packages-Arlo-Washington-DC/1441765816697/

🧩 The state of the Rust dependency ecosystem

https://00f.net/2025/10/17/state-of-the-rust-ecosystem/

#rust #programming #software #packages #dependency #build

Python Workers redux: fast cold starts, packages, and a uv-first workflow

https://blog.cloudflare.com/python-workers-advancements/

#HackerNews #Python #Workers #fast #cold #starts #packages #uv-first #workflow #Cloudflare

My package carrier left a note instead of attempting to deliver a package. I understand the job’s demanding, but leaving a package without even a ring feels sad and unprofessional. It’s a disappointing experience I see much more often nowadays. 📦😔 #delivery #packages #shipping #logistics #service

Ordering anything during #christmas season is a bad decision
#Delays , #lost #packages and "oh that was yours" ?
Are normal.

Kinda considering buying locally..
Shame things are way more expy then
(100 bucks extra ? Ouchy)
#repost •acws #acws

When the mail carrier can't read your handwriting the USPS calls in these experts to save the day

https://fed.brid.gy/r/https://www.upworthy.com/usps-remote-encoding-center

The first tip is live on Digging Code’s Community Tips! 🌟

Share your tips or favorite packages to help other developers. 🙌

✍ Tips:
https://github.com/digging-code-blog/community-tips

🔮 Packages:
https://github.com/digging-code-blog/community-packages

Also, to unlock the exciting new features currently cooking at Digging Code, register an account to receive your secret access key. 🔑
https://mmramadan.com/register

🏃‍♂️ Join our Telegram Channel:
https://t.me/digging_code

#backend #php #laravel #developer #tips #packages #opensource #github

DPRK's 'Contagious Interview' Spawns Malicious Npm Package Factory. North Korean attackers have delivered more than 197 malicious #packages with 31K-plus downloads since Oct. 10, as part of ongoing state-sponsored activity to compromise #software developers.
https://www.darkreading.com/application-security/contagious-interview-malicious-npm-package-factory
#malware #security

Baby Pokemon Party with baby Pokemon having a party together

Art Commission by @NazzNanuke

Mila Sprigatito & May Belle Skitty © @baby_kittysierra1
Dahlia Buneary, Amanda Audino, Bolty Pichu, Pixie Ribombee © ME

#MilaSprigatito #MayBelleSkitty #DahliaBuneary #AmandaAudino #BoltyPichu #PixieRibombee #Pokemon #Boy #Girls #Baby #Cute #Diaper #Nappy #Babyfur #Diaperfur #party #Playing #Snacks #Chips #Packages #SippyCup #Juice #BoardGame #Balloon #Cookies #popcorn

Europol's coordinated operations have yielded a staggering seizure of counterfeit and hazardous toys from across the European Union, exposing vulnerabilities in... https://news.osna.fm/?p=25076 | #news #disrupts #europol #millions #packages

@kevin
Awesome😁. That's how u improve scripting and have no fear of changing the system state globally.
Idk if I have sent this to you earlier, but anyway sharing this here, this is a perfect start for beginners for leveling up nix shell skills(blog type creation in PPT form):

https://docs.google.com/presentation/d/1sFSG0As2L9cWjJ8qcRS6O4XDrMPe-WSlbu2oKryPIWM/

#nix #shells #scripting #shell #adhoc #nixpkgs #nixos #packages #tutorial #blog #ppt #global

#Synaptic is a PITA when you want to downgrade a package.
Try from the terminal:

sudo apt install <package name>=<version>

instead.

#linux #tech #ubuntu #debian #packages #conquerthecommandline #shell

:javascript: #Malicious #NPM #Packages fetch #Infostealer for #Windows, #Linux and #macOS.

The packages were uploaded on July 4, and remained undetected for a long period due to multiple layers of obfuscation that helped escape standard static analysis mechanisms. The ten packages counted nearly 10,000 downloads and….

http://socket.dev/blog/10-npm-typosquatted-packages-deploy-credential-harvester

#it #security #privacy #engineer #media #secure #javascript #programming #developer #tech #news

….stole credentials from system keyrings, browsers and authentication services.

At the time of writing, the packages are still available, despite Socket reporting them to npm:

• typescriptjs
• deezcord.js
• dizcordjs
• dezcord.js
• etherdjs
• ethesjs
• ethetsjs
• nodemonjs
• react-router-dom.js
• zustand.js

Socket researchers say that the packages use a fake CAPTCHA challenge to appear legitimate and download a 24MB infostealer packaged with PyInstaller.

⁉️To lure users, the threat actor used typosquatting, a tactic that leverages misspellings or variations of the legitimate names for TypeScript [typed superset of JavaScript], discord.js [Discord bot library], ethers.js (Ethereum JS library), nodemon [auto-restarts Node apps], react-router-dom [React browser router] and zustand [minimal React state manager].⁉️

When searching for the legitimate packages on the npm platform, developers may mistype the name of the legitimate package or pick a malicious one listed in the results.

👾Upon installation, a ‘postinstall’ script is triggered automatically to spawn a new terminal that matches the host’s detected OS. The script executes ‘app.js’ outside the visible install log and clears the window immediately to evade detection. The ‘app.js’ file is the malware loader which employs four obfuscation layers: self-decoding eval wrapper, XOR decryption with dynamically generated key, URL-encoded payload and heavy control-flow obfuscation.👾

[ImageSource: Socket]

Bogus ASCII CAPTCHA Step.

The script displays a fake CAPTCHA in the terminal using ASCII to give false legitimacy to the installation process.

Next, it sends the victim's geolocation and system fingerprint information to the attacker's command and control [C2] server. Having acquired this information, the malware downloads and automatically launches a platform-specific binary from an external source, which is a 24 MB PyInstaller-packaged executable.

⁉️The information stealer targets system keyrings such as Windows Credential Manager, macOS Keychain, Linux SecretService, libsecret and KWallet, as well as data stored in Chromium-based and Firefox browsers, including profiles, saved passwords and session cookies.⁉️

Moreover, it seeks SSH keys in common directories, and also attempts to locate and steal OAuth, JWT, and other API tokens. The stolen information is packaged into compressed archives and exfiltrated to the attacker’s server at 195[.]133[.]79[.]43, following a temporary staging step in /var/tmp or /usr/tmp.

👾Developers who downloaded any of the listed packages are recommended to clean up the infection and rotate all access tokens and passwords, as there is a good chance that they are compromised. When sourcing packages from npm or other open-source indexes, it is advisable to double-check for typos and ensure that everything comes from reputable publishers and official repositories.👾

Tìm cổng thanh toán tốt nhất cho SaaS tại Ấn Độ: Razorpay yêu cầu liên kết PayPal cho giao dịch quốc tế. Tìm giải pháp nào hỗ trợ thanh toán trong nước và quốc tế, bao gồm thanh toán một lần và định kỳ,.websocket thanh toán bằng INR và trải nghiệm phát triển tốt. #SaaS #PaymentGateway #India #ThanhToánTrựcTuyến #SaaS_India #Packages #GiaoDịchQuốcTế

https://www.reddit.com/r/SaaS/comments/1omaceq/which_payment_gateway_is_best_for_india_i_had/

NPM flooded with malicious packages downloaded more than 86k times

https://arstechnica.com/security/2025/10/npm-flooded-with-malicious-packages-downloaded-more-than-86000-times/

#HackerNews #NPM #malicious #packages #security #vulnerabilities #cyber #threats #software #development

freebsd-base(7) pkgbase(7) manual page:

https://www.reddit.com/r/freebsd/comments/1obizfx/comment/nkhc7f4/

@omar

#FreeBSD #pkgbase #manual #manpage #beta #pkg #packages

Fresh 𝗕𝗿𝗮𝘃𝗲 𝗡𝗲𝘄 𝗣𝗞𝗚𝗕𝗔𝗦𝗘 𝗪𝗼𝗿𝗹𝗱 [Brave New PKGBASE World] article on vermaden.wordpress.com blog.

https://vermaden.wordpress.com/2025/10/20/brave-new-pkgbase-world/

#verblog #bectl #desktop #freebsd #laptop #packages #pkg #pkgbase #server #update #upgrade

Fresh 𝗕𝗿𝗮𝘃𝗲 𝗡𝗲𝘄 𝗣𝗞𝗚𝗕𝗔𝗦𝗘 𝗪𝗼𝗿𝗹𝗱 [Brave New PKGBASE World] article on vermaden.wordpress.com blog.

https://vermaden.wordpress.com/2025/10/20/brave-new-pkgbase-world/

#verblog #bectl #desktop #freebsd #laptop #packages #pkg #pkgbase #server #update #upgrade

@emaste should bugs 289875 and 290024 block 15.0 meta bug 289698?

From <https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=289875#c9>:

"I guess, this bug 289875 should … fix the non-existence of /dist/packages/repos before 15.0-RELEASE"

289875 should probably have keyword: regression.

<https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=290024> for post-install script failures is more recent.

(I suspect that no-one is alpha/beta testing the traditional offline package capabilities of the DVD images; the offline packages for KDE Plasma, and so on.)

#FreeBSD #bug #packages #pkg #DVD

Thanks to the @fsf for promoting GNU Guix's fundraising.

Like many other Free Software project's we depend on our users and fans support to pay for the project's expenses.

We're running a campaign to 'sustain and strengthen' Guix. As a #linux distribution we have a lot of #packages which costs quite a bit to build and distribute to users. And, as we use the declarative and reproducible system pioneered by #Nix we rebuild packages whenever there's a change.

If you'd like to know more about what we're doing, or support the project you can check out the blog post:

https://guix.gnu.org/en/blog/2025/fundraising-campaign-to-sustain-gnu-guix/

We appreciate any support that people can give!

#linux #guix #gnuguix #scheme #guile #freesoftware #declarative #reproducible

#PACKAGES

Client Info