Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
GitHub

Sehab121/awesome-openclaw-skills-CN

java-change-with-tests - - Any Java change that must be merged jo4 - URL shortener, QR code generator, and link analytics API. joko-orchestrator - Deterministically coordinates autonomous planning ...