JavaScript – Experimental News Clipping Site

Simon Willison’s Weblog: Quoting Simon Højberg

Oct 8, 2025

—

by

Source URL: https://simonwillison.net/2025/Oct/8/simon-hojberg/ Source: Simon Willison’s Weblog Title: Quoting Simon Højberg Feedly Summary: The cognitive debt of LLM-laden coding extends beyond disengagement of our craft. We’ve all heard the stories. Hyped up, vibed up, slop-jockeys with attention spans shorter than the framework-hopping JavaScript devs of the early 2010s, sling their sludge in pull requests and…

Cisco Talos Blog: Nvidia and Adobe vulnerabilities

Oct 1, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://blog.talosintelligence.com/nvidia-and-adobe-vulnerabilities/ Source: Cisco Talos Blog Title: Nvidia and Adobe vulnerabilities Feedly Summary: Cisco Talos’ Vulnerability Discovery & Research team recently disclosed five vulnerabilities in Nvidia and one in Adobe Acrobat.The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco’s third-party vulnerability disclosure policy. For Snort…

Slashdot: Will AI Mean Bring an End to Top Programming Language Rankings?

Sep 28, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://developers.slashdot.org/story/25/09/28/1823244/will-ai-mean-bring-an-end-to-top-programming-language-rankings?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Will AI Mean Bring an End to Top Programming Language Rankings? Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses the evolving landscape of programming languages in the context of AI advancements, specifically how LLMs (Large Language Models) like ChatGPT are altering the necessity and manner in…

The Cloudflare Blog: Safe in the sandbox: security hardening for Cloudflare Workers

Sep 25, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://blog.cloudflare.com/safe-in-the-sandbox-security-hardening-for-cloudflare-workers/ Source: The Cloudflare Blog Title: Safe in the sandbox: security hardening for Cloudflare Workers Feedly Summary: We are further hardening Cloudflare Workers with the latest software and hardware features. We use defense-in-depth, including V8 sandboxes and the CPU’s memory protection keys to keep your data safe. AI Summary and Description: Yes Summary:…

Microsoft Security Blog: AI vs. AI: Detecting an AI-obfuscated phishing campaign

Sep 24, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/09/24/ai-vs-ai-detecting-an-ai-obfuscated-phishing-campaign/ Source: Microsoft Security Blog Title: AI vs. AI: Detecting an AI-obfuscated phishing campaign Feedly Summary: Microsoft Threat Intelligence recently detected and blocked a credential phishing campaign that likely used AI-generated code to obfuscate its payload and evade traditional defenses, demonstrating a broader trend of attackers leveraging AI to increase the effectiveness of…

The Register: GitHub moves to tighten npm security amid phishing, malware plague

Sep 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/23/github_npm_registry_security/ Source: The Register Title: GitHub moves to tighten npm security amid phishing, malware plague Feedly Summary: Hundreds of compromised packages pulled as registry shifts to 2FA and trusted publishing GitHub, which owns the npm registry for JavaScript packages, says it is tightening security in response to recent attacks.… AI Summary and Description:…

Docker: MCP Horror Stories: The Drive-By Localhost Breach

Sep 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.docker.com/blog/mpc-horror-stories-cve-2025-49596-local-host-breach/ Source: Docker Title: MCP Horror Stories: The Drive-By Localhost Breach Feedly Summary: This is Part 4 of our MCP Horror Stories series, where we examine real-world security incidents that expose the devastating vulnerabilities in AI infrastructure and demonstrate how Docker MCP Gateway provides enterprise-grade protection against sophisticated attack vectors. The Model Context…

Simon Willison’s Weblog: httpjail

Sep 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Sep/19/httpjail/#atom-everything Source: Simon Willison’s Weblog Title: httpjail Feedly Summary: httpjail Here’s a promising new (experimental) project in the sandboxing space from Ammar Bandukwala at Coder. httpjail provides a Rust CLI tool for running an individual process against a custom configured HTTP proxy. The initial goal is to help run coding agents like Claude…

Simon Willison’s Weblog: I think "agent" may finally have a widely enough agreed upon definition to be useful jargon now

Sep 18, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Sep/18/agents/ Source: Simon Willison’s Weblog Title: I think "agent" may finally have a widely enough agreed upon definition to be useful jargon now Feedly Summary: I’ve noticed something interesting over the past few weeks: I’ve started using the term “agent" in conversations where I don’t feel the need to then define it, roll…

Unit 42: "Shai-Hulud" Worm Compromises npm Ecosystem in Supply Chain Attack

Sep 17, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://unit42.paloaltonetworks.com/npm-supply-chain-attack/ Source: Unit 42 Title: "Shai-Hulud" Worm Compromises npm Ecosystem in Supply Chain Attack Feedly Summary: Self-replicating worm “Shai-Hulud” has compromised 180-plus software packages in a supply chain attack targeting the npm ecosystem. We discuss scope and more. The post “Shai-Hulud" Worm Compromises npm Ecosystem in Supply Chain Attack appeared first on Unit…

Tag: JavaScript