MaxGreat Nix Flake Check is out!
youtuber clickbait voice I Tried Evaluating EVERY Nix Flake And Here Is What I Found
(ok but seriously, I found a bunch of cool stuff and wrote it down, go check it out!)
Xdej@goldstein
You tried every nix flake: Does that imply that you installed dependencies that is known malwares like litellm https://www.trendmicro.com/en_us/research/26/c/inside-litellm-supply-chain-compromise.html or unknown malware more stealthy and possibly evading their jails?
@raito @Pol
You tried every nix flake: Does that imply that you installed dependencies that is known malwares like litellm https://www.trendmicro.com/en_us/research/26/c/inside-litellm-supply-chain-compromise.html or unknown malware more stealthy and possibly evading their jails?
@raito @Pol
Your AI Gateway Was a Backdoor: Inside the LiteLLM Supply Chain Compromise
TeamPCP orchestrated one of the most sophisticated multi-ecosystem supply chain campaigns publicly documented to date that cascaded through developer tooling and compromised LiteLLM, exposing how AI proxy services that concentrate API keys and cloud credentials become high-value collateral when supply chain attacks compromise upstream dependencies.