TechnoCat

On closer inspection, preventing post-install would have fixed it too: “The attack exploited a transitive dependency, plain-crypto-js@4.2.1, which executed a postinstall script to deploy the RAT.”

Minimum age would have prevented it in this case.

I always advocate switching to pnpm where install scripts are disabled by default. It has plenty of security features to ward off most supply chain attacks.

• https://pnpm.io/settings#onlybuiltdependencies
• https://pnpm.io/settings#minimumreleaseage
• https://pnpm.io/blog/2025/12/29/pnpm-in-2025#security-by-default

Because most projects are legacy projects.

I run my home services on an extremely low power PC. So I like bare bones.

I find fd to have a really nice API.

• https://github.com/sharkdp/fd

You’re correct!

       --write-thumbnail  
              Write thumbnail image to disk  

There is also this option:

       --embed-thumbnail  
              Embed thumbnail in the video as cover art  

Here is a script I wrote:

~/bin 0s  
> cat vget  
#!/usr/bin/env fish  
yt-dlp --embed-metadata --write-subs --embed-subs --write-thumbnail --prefer-free-formats -f "[height<=1080]" $argv  

I’m talking monetary inflation, not price inflation.

Have you not heard of inflation? It is literally the creation of new monies that the government gives to banks to give loans.

Imagine your entire life is viewed through the lens of actions you can take in the stock market. What a sad life.

Dang. That’s a big release.

That was mean.

“Claude, would capturing maduro distract people from my pedophilia?”

We need better financial tools to allow employees to take out loans to purchase companies from owners and form worker cooperatives.

https://www.ibtimes.co.uk/jeremy-corbyn-unveils-right-own-john-lewis-style-employee-ownership-policy-1581548

I know of some examples of employees that purchased from owners:

• Sexy Pizza in Denver
• Pizza Shuttle in Milwaukee

While CSAM might be the word people are using now, how did you determine “porn” means the creation of it involved consent and not that the contents contain sexually explicit material?

I’d like to see Google try and run their company without open source. The operating system, programming language, databases, language libraries, network stack, etc. is such a long list of crucial things. Google is being totally nonsensical to suggest open source doesn’t drive a large part of today’s economy.

You are ears of very fine taste.

I only listen to music with overripe bananas. It sounds best that way. Copper wire just doesn’t sound as good. Believe me: My ears are very sensitive and superior to yours.

I remember a game (forget which one) that would ask which word was on a certain page in the game manual for its copy protection.