The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.
GitHub

lmxxf/langchain-on-openharmony

在 OpenHarmony 开发板上跑 Python 3.11 + LangChain / AgentScope + DeepSeek API。两条链路均已验证全链路打通。 LangChain 链路: OH RK3568 → ...
GitHub

Project-7-AI-Financial-Intelligence-Fraud-Detection-Engine /.cursor /rules

- Use clean architecture: routes → services → repositories/models. - Routes/controllers handle only HTTP/WebSocket concerns. - Business logic lives in services (fraud_detection, risk_scoring, ...