开发者生态 None 事件 CVE-2026-LGTM Report filed: 04:13 UTC Status: Resolved (by treaty) Severity: Informational → Critical → Withdrawn → Critical → Negotia the security UTC 2026-06-26 mooreds
安全攻防 None 恶意 npm 包通过 GitHub 从 Claude AI 用户目录窃取文件 Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information steali the package Cybersecurity 2026-05-27 info@thehackernews.com (The Hacker News)
开源推荐 None GitHub 热门项目:packrun GitHub项目:packrun 仓库地址:https://github。com/midday-ai/packrun Stars:3841 | 作者:midday-ai 项目描述:npm for agents and humans ==== package packages packrun 2026-05-18 GitHub Trending
开源推荐 None GitHub 热门项目:关税 GitHub项目:tariff 仓库地址:https://github。com/hxu296/tariff Stars:3128 | 作者:hxu296 项目描述:The official repository for tariff === tariff import TARIFF 2026-05-18 GitHub Trending
开发者生态 None 不确定性是修补 CVE 的一个问题 Even before Claude Mythos was announced, there were clear signs that the next era of CVEs would be found by AI models。 the and package 2026-05-08 mathewpregasen