The Hacker News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.
InfoWorld

Why local-first matters for JavaScript

Every developer should be paying attention to the local-first architecture movement and what it means for JavaScript. Here’s ...

OpenAI releases Codex for Windows

OpenAI today released the Codex app for Windows, powered by OpenAI’s frontier coding models, and it’s now the only coding agent with a first-class Windows experience.
InfoWorld

The revenge of SQL: How a 50-year-old language reinvents itself

From the browser to the back end, the ‘boring’ choice is exciting again. We look at three trends converging to bring SQL back ...
The Hacker News

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

A "coordinated developer-targeting campaign" is using malicious repositories disguised as legitimate Next.js projects and technical assessments to trick victims into executing them and establish ...
GitHub

Fingerprint Server Node.js SDK

Fingerprint is a device intelligence platform offering industry-leading accuracy. The Fingerprint Server Node SDK is an easy way to interact with the Fingerprint Server API from your Node application.
Microsoft

Developer-targeting campaign using malicious Next.js repositories

Microsoft Defender Experts identified a coordinated developer-targeting campaign delivered through malicious repositories disguised as legitimate Next.js projects and technical assessment materials.
GitHub

feat(js): evaluate JS/TS integration — WASM vs native benchmarks

The flagd-evaluator project has shipped WASM packages for Java (Chicory), Go (wazero), and .NET (Wasmtime), plus PyO3 native bindings for Python. JS/TS is the remaining language with an in-process ...