The Hacker News

The State of Trusted Open Source Report

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
腾讯网

一夜之间,全世界的 Agent 能力提高了一个档次

后台有个服务叫 autoDream。触发条件:距上次 Dream 超过 24 小时 + 至少 5 个新 session + 获取排他锁。触发后执行四个阶段:感知、采集、整合、修剪。这个 Dream 子 Agent 只有只读权限。