关于「GitHub」的内容列表
On March 23rd, Slow Mist founder Cosine posted on social media, "Using the GitHub Actions CI/CD mechanism to attack Coinbase in the supply chain, fortunately it did not continue to succeed, otherwise the next security incident to be exposed would be against Coinbase. Supply chain attack path on GitHub: reviewdog/action-settings - > tj-actions/changed-files - > coinbase/agentkit - > steal GitHub personal access tokens (PAT), Cloud as a Service related keys, etc. Cosine suggests that if enterprise...
3月23日消息,慢雾创始人余弦在社交媒体上发文表示,「利用GitHub Actions CI/CD机制供应链攻击Coinbase,所幸没有继续成功,否则下一个被爆的安全事件就是针对Coinbase了。在GitHub上的供应链攻击路径:reviewdog/action-设置-> tj-actions/changed-files -> coinbase/agentkit ->窃取GitHub个人访问令牌 (PAT)、云服务有关密钥等。余弦建议,如果企业用到reviewdog或tj-actions,应该进行自查。」
一项隐秘的恶意软件活动正通过在Github上的虚假开源项目中嵌入恶意代码来劫持加密钱包,诱骗开发人员执行隐藏的有效载荷。 一个名为Gitvenom的网络攻击活动一直通过将恶意代码嵌入看似合法的开源项目中来攻击Github用户。研究人员Georgy Kucherin和Joao Godinho发现了这一行动,网络犯罪分子会创建模仿真实软件工具的欺诈性存储库。根据虚假项目中使用的编程语言,恶...
Cyber security firm Kaspersky says hackers are creating hundreds of fake GitHub projects to trick users into downloading malicious software that encrypts and steals credentials. Kaspersky analyst Georgy Kucherin said in a report dated February 24 that hackers created hundreds of software feeds on GitHub, hosted by remote access trojans (RAT),...
网络安全公司Kaspersky表示,黑客们正在创建数百个虚假的GitHub项目,目的是诱骗用户下载加密和窃取凭证的恶意软件。 卡巴斯基分析师乔治-库切林(Georgy Kucherin)在2月24日的一份报告中说,黑客在GitHub上创建了数百个软件源,托管包含远程访问木马(RAT)、...
On February 24th, at 9:30 this morning, open-source large-scale model platform DeepSeek opened the first day of 5 consecutive days of technology sharing this week, open-sourcing an efficient MLA decoding kernel optimized for Hopper GPUs - FlashMLA. Just released on Github and broke 1,000 stars.
On February 7th, the number of stars of DeepSeek project on GitHub, the world's largest code hosting platform, exceeded OpenAI. As of 2:00 pm this Friday, the number of stars of DeepSeek-V3 large model, the most popular project under DeepSeek, has reached 77,700, surpassing the most popular project of OpenAI in the same platform. In addition, the Llama series, which is also an open-source large model, has the highest number of stars reached 57,500, Qwen 2.5 of Alibaba Cloud has 14,900 stars, and...
According to GitHub data, Eliza, an autonomous proxy framework developed by the ai16z team, topped GitHub's December Trends Chart with 4,531 new stars added this month, for a total of 7,015 stars. It is reported that the Eliza core engineering team is preparing to start the new Eliza Framework v2 upgrade. Elizav2 will improve architecture and scalability, and lay the plug-and-play foundation for the partner plugin ecosystem of Eliza agents.
Gravity, the L1 blockchain launched by the Galxe team, has released Litepaper on Github and will go live on the testnet in Quarter 1 in 2025. It is reported that Gravity enables over 1 billion hash operations per second, millisecond termination time and parallel EVM operations. Gravity provides enterprise-grade security through re-staking protocols such as EigenLayer and Babylon, while taking into account seamless cross-chain interoperability. At the same time, Gravity will launch a series of to...
Galxe团队推出的L1区块链Gravity已在Github发布Litepaper,将于2025年第一季度上线测试网。据悉,Gravity实现每秒超10亿次哈希运算、毫秒级终结时间和并行EVM运算。Gravity通过再质押协议(如EigenLayer和Babylon)提供企业级安全性,同时兼顾无缝的跨链互操作性。同时,Gravity将推出一系列工具帮助Web3开发者重塑区块链开发: Grevm (Gravity EVM):超快速高效的智能合约运行时; GravityDB:可扩...
Big language model AI agent Reality Spiral tweeted that the GitHub x ai16z v0.1 plugin is coming soon. Agents can now initialize repositories, autocommit, manage pull requests, and extract knowledge/memories from files. Future features may include agents reflecting on their own code, autonomously specifying and prioritizing functions, learning the source code of other agents and improving themselves, and submitting changes to other agents.
