hckrnws
feross
Tues Sep 1, 2009 4:56am PST
Karma:
46953
about
Founder & CEO, Socket <https://socket.dev> – Socket makes a developer-first security platform that prevents vulnerable and malicious open source dependencies from infiltrating your software supply chain.

Stanford visiting lecturer, CS 253 Web Security <https://cs253.stanford.edu> – Principles of web security, attacks and countermeasures, and more...

Open source maintainer – 100+ open source packages on npm, including WebTorrent <https://webtorrent.io>, StandardJS <https://standardjs.com>, BitMidi <https://bitmidi.com>, simple-peer <https://github.com/feross/simple-peer>, and more <https://socket.dev/npm/user/feross>.

You can reach me at {my username}@feross.org, or find out more on my website: https://feross.org/resume

[ my public key: https://keybase.io/feross; my proof: https://keybase.io/feross/sigs/gO6pVIJ1DXdy9Y21yil6nlyk_by5BE_GaaWOOQJ5PvQ ]

submitted
Thurs May 22, 2025 12:46pm PST
OpenAI Acquires Io, OpenAI's Strategic Positioning, Apple's Worsening AI Problem
@feross
2
1
4
Wed May 21, 2025 6:02pm PST
Asset-Backed Crypto Token Wasn't
@feross
1
1
3
Wed May 21, 2025 4:46pm PST
By default, Signal doesn't recall
@feross
39
477
563
Wed May 21, 2025 4:03pm PST
Two lines of Cross-Document View Transitions code you can use on every website
@feross
2
Wed May 21, 2025 3:36pm PST
The Other Covid Reckoning
@feross
6
Wed May 21, 2025 3:02pm PST
Google I/O, the Search Funnel, Product Possibilities
@feross
1
Tues May 20, 2025 6:16pm PST
Get Your Research from an AI Video
@feross
1
1
1
Tues May 20, 2025 5:48pm PST
Iterator helpers have become Baseline Newly available
@feross
1
Mon May 19, 2025 9:45pm PST
Malicious Koishi Chatbot Plugin Exfiltrates Messages Triggered by 8-Character
@feross
4
Mon May 19, 2025 7:01pm PST
US Debt Rates Itself
@feross
1
1
5
Fri May 16, 2025 2:33pm PST
Coinbase Got Hacked a Little
@feross
3
1
5
Fri May 16, 2025 2:17pm PST
2025.20: Product Dreams and Marketplace Realities
@feross
1
Thurs May 15, 2025 10:31pm PST
Malicious 'Checker' Packages on PyPI Probe TikTok and Instagram for Valid
@feross
2
1
3
Thurs May 15, 2025 8:37pm PST
Node.js TSC Declines to Endorse Feature Bounty Program
@feross
1
2
Thurs May 15, 2025 2:47pm PST
Elon Musk Needs More Options
@feross
2
2
3
Thurs May 15, 2025 2:34pm PST
Release Notes for Safari Technology Preview 219
@feross
1
Thurs May 15, 2025 2:17pm PST
An Interview with Ben Thompson at the MoffettNathanson Media, Internet, and
@feross
1
Thurs May 15, 2025 1:47pm PST
Book Review: Selfish Reasons to Have More Kids
@feross
3
Wed May 14, 2025 8:15pm PST
The Landscape of Malicious Open Source Packages: 2025 Mid‑Year Threat Report
@feross
1
2
Mon May 12, 2025 5:32pm PST
WebKit Features in Safari 18.5
@feross
1
Mon May 12, 2025 3:33pm PST
We have two new tracks for our 2025 Blog-Building Intensive Fellowship
@feross
1
Sat May 10, 2025 5:01am PST
Radio City
@feross
4
Thurs May 8, 2025 9:16pm PST
Malicious NPM Packages Use Telegram to Exfiltrate BullX Credentials
@feross
1
3
Thurs May 8, 2025 7:34pm PST
Fighting unwanted notifications with machine learning in Chrome
@feross
13
41
31
Thurs May 8, 2025 7:16pm PST
Highlights from the Comments on AI GeoGuessr
@feross
1
2
Wed May 7, 2025 1:33pm PST
Add wide gamut P3 and alpha transparency to your color picker in HTML
@feross
2
Wed May 7, 2025 1:16pm PST
Microsoft Earnings, Microsoft's Core Capability, Amazon Earnings
@feross
3
Wed May 7, 2025 9:01am PST
Moldbug Sold Out
@feross
2
2
14
Wed May 7, 2025 1:31am PST
AI Slop Is Polluting Bug Bounty Platforms with Fake Vulnerability Reports
@feross
3
2
11
Tues May 6, 2025 3:47am PST
RSC for Astro Developers
@feross
4
22
43
Mon May 5, 2025 6:47pm PST
Warren Buffett Took the Long View
@feross
2
1
3
Mon May 5, 2025 3:16pm PST
Platform Power Is Underrated
@feross
3
Sat May 3, 2025 10:01am PST
2025.18: Meta and Its Many AI Plans
@feross
2
Fri May 2, 2025 9:01pm PST
NPM targeted by malware campaign mimicking familiar library names
@feross
1
5
Fri May 2, 2025 5:01pm PST
Roots of Progress Blog-Building Intensive
@feross
1
1
Thurs May 1, 2025 7:52pm PST
Wget to Wipeout: Malicious Go Modules Fetch Destructive Payload
@feross
10
Thurs May 1, 2025 12:18am PST
Release Notes for Safari Technology Preview 218
@feross
1
Wed Apr 30, 2025 8:37pm PST
Using Trusted Protocols Against You: Gmail as a C2 Mechanism
@feross
5
Wed Apr 30, 2025 8:16am PST
The Populist Right Must Own Tariffs
@feross
4
3
16
Tues Apr 29, 2025 6:33pm PST
Giving V8 a Heads-Up: Faster JavaScript Startup with Explicit Compile Hints
@feross
3
Tues Apr 29, 2025 6:17pm PST
Intel Earnings, TSMC Earnings
@feross
2
Tues Apr 29, 2025 6:02pm PST
A New Overview in Our Dashboard
@feross
3
Mon Apr 28, 2025 4:01pm PST
Google Earnings, Search and AI, Building AI Products
@feross
1
2
Fri Apr 25, 2025 10:46pm PST
AMA with AI Futures Project Team
@feross
1
Thurs Apr 24, 2025 10:31pm PST
CISA Rebuffs Funding Concerns as CVE Foundation Draws Criticism
@feross
1
2
5
Thurs Apr 24, 2025 7:49pm PST
Polishing your typography with line height units
@feross
2
Thurs Apr 24, 2025 6:01pm PST
The Stock Market Loves Bitcoin
@feross
2
2
4
Thurs Apr 24, 2025 5:47pm PST
An Interview with Eric Seufert About Digital Advertising During Political
@feross
1
Thurs Apr 24, 2025 5:31pm PST
AI Futures: Blogging and AMA
@feross
1
2
Thurs Apr 24, 2025 5:17pm PST
Historical Analytics – Now in Beta
@feross
2
Wed Apr 23, 2025 5:16am PST
Module Reachability: Focus on the Vulnerabilities That Matter
@feross
3
Tues Apr 22, 2025 5:31pm PST
Repository Labels and Security Policies
@feross
1
6
Tues Apr 22, 2025 12:18pm PST
OpenAI and WebRTC Q&A with Sean DuBois
@feross
2
Tues Apr 22, 2025 11:17am PST
Apple and the Ghosts of Companies Past
@feross
5
Tues Apr 22, 2025 3:17am PST
Measuring the response latency of OpenAIs WebRTC-based Realtime API
@feross
1
Tues Apr 22, 2025 2:16am PST
The Bad Seeds: Malicious NPM and PyPI Packages Pose as Developer Tools to Steal
@feross
3
Mon Apr 21, 2025 6:02pm PST
.NET Support in Socket
@feross
1
2
7
Mon Apr 21, 2025 3:16pm PST
Google Loses Ad Antitrust Case, Market Definitions and Tying, the Trinko
@feross
1
2
Thurs Apr 17, 2025 9:46pm PST
Go Support Is Now Generally Available
@feross
4
Thurs Apr 17, 2025 6:01pm PST
Vlt Launches Real-Time Dependency Analysis Powered by Socket
@feross
1
4
Thurs Apr 17, 2025 3:46pm PST
An Interview with Dan Kim and Hassan Khan About Chips
@feross
4
Thurs Apr 17, 2025 3:31pm PST
Progress Conference 2025
@feross
1
2
Wed Apr 16, 2025 9:47pm PST
Release Notes for Safari Technology Preview 217
@feross
1
1
Wed Apr 16, 2025 9:17pm PST
CISA Extends Mitre Contract as Crisis Accelerates Alternative CVE Coordination
@feross
2
1
5
Wed Apr 16, 2025 12:47pm PST
Nvidia H20 Restricted in China, the Huawei CloudMatrix 384, Whither Chip
@feross
3
Tues Apr 15, 2025 5:03pm PST
The CSS Shape() Function
@feross
1
1
Tues Apr 15, 2025 1:01pm PST
Meta vs. FTC, the Three Facebook Eras, Video Slop and Market Forces
@feross
1
Tues Apr 15, 2025 1:02am PST
Highlights from the Comments on Posiwid
@feross
3
Mon Apr 14, 2025 10:16pm PST
Malicious NPM Package Disguised as Advcash Integration Triggers Reverse Shell
@feross
1
3
Sun Apr 13, 2025 3:32am PST
How to repair the parts that explode in Lenovo Yoga laptops (2019)
@feross
9
18
56
Sat Apr 12, 2025 4:46pm PST
How to repair the parts that explode in Lenovo Yoga laptops
@feross
2
Sat Apr 12, 2025 1:32am PST
How to repair the parts that explode in Lenovo Yoga laptops
@feross
3
Fri Apr 11, 2025 4:17pm PST
How to repair the parts that explode in Lenovo Yoga laptops (2019)
@feross
2
2
Fri Apr 11, 2025 4:01pm PST
Turtles, Clams, and Cyber Threat Actors: Shell Usage
@feross
1
2
Fri Apr 11, 2025 3:16pm PST
2025.15: Liberation and Whiplash
@feross
1
1
Fri Apr 11, 2025 2:46pm PST
VulnCon 2025: NVD Scraps Industry Consortium Plan, Raising Questions About
@feross
2
Thurs Apr 10, 2025 5:16pm PST
A New Design for GitHub PR Comments
@feross
2
Thurs Apr 10, 2025 4:33pm PST
An Interview with Google Cloud Platform CEO Thomas Kurian About Building An
@feross
2
Tues Apr 8, 2025 4:17pm PST
Apple's China Problem, Apple in the Short Term, Tech's Complement Risk
@feross
3
2
1
Tues Apr 8, 2025 4:02pm PST
Reminder: Livestream This Thursday April 10: Open AI WebRTC Q&A with Sean DuBois
@feross
1
2
Mon Apr 7, 2025 11:18am PST
Agent mode: available to all users and supports MCP
@feross
2
Fri Apr 4, 2025 11:03am PST
Release Notes for Safari Technology Preview 216
@feross
1
1
Fri Apr 4, 2025 9:19am PST
March 2025 (Version 1.99)
@feross
1
Fri Apr 4, 2025 9:02am PST
AI 2027
@feross
1
Fri Apr 4, 2025 8:31am PST
Safari 18.4 Ships 3 New JavaScript Features from the TC39 Pipeline
@feross
2
Thurs Apr 3, 2025 8:32am PST
Building APIs with Next.js
@feross
1
Thurs Apr 3, 2025 8:17am PST
Malicious PyPI Package Targets WooCommerce Stores with Automated Carding Attacks
@feross
3
Tues Apr 1, 2025 10:47pm PST
Python Adopts Standard Lock File Format for Reproducible Installs
@feross
1
8
Tues Apr 1, 2025 2:03pm PST
Measuring the response latency of OpenAIs WebRTC-based Realtime API
@feross
2
Tues Apr 1, 2025 1:46pm PST
The Colors of Her Coat
@feross
12
49
52
Mon Mar 31, 2025 7:20pm PST
WebKit Features in Safari 18.4
@feross
3
5
29
Mon Mar 31, 2025 4:34pm PST
Item Flow, Part 1: A new unified concept for layout
@feross
4
Mon Mar 31, 2025 4:18pm PST
Vacation: March 31st to April 3rd
@feross
1
Mon Mar 31, 2025 4:02pm PST
OpenGrep Restores Fingerprinting in JSON and Sarif Outputs
@feross
3
Fri Mar 28, 2025 2:01pm PST
NVD Concedes Inability to Keep Pace with Surging CVE Disclosures in 2025
@feross
1
3