GitHub

KAEDEAK/vrmah_mcp_proxy

VRM MCP Proxy VRM Agent Host (vrmah) と VOICEVOX を MCP (Model Context Protocol) 経由で制御する統合プロキシサーバー。 主に Claude Code CLI / VSCode 拡張 / Codex CLI のいずれの環境でも同一の mcp_server.py で動作します。
GitHub

Browse Windows Package Manager packages, select what you need, and export them for quick ...

Winget Export provides an interface for browsing Windows Package Manager (winget) packages. The package list is updated every day to ensure an access to the latest available packages. You can search ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious [email protected] after npm compromise on March 31, 2026, deploying ...

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
XDA Developers on MSN

I replaced PuTTY, Notepad++, and WinSCP with modern tools, and I wish I had sooner

Some classics deserve to be retired.

Axios遭供应链投毒攻击(附排查与紧急补救指南)

事件概述2026 年 3 月 31 日,著名云安全平台 StepSecurity 监测到,在 JavaScript 生态系统中最受欢迎的 HTTP 客户端库 Axios(每周下载量超 3 亿次)遭遇了严重的供应链攻击。攻击者劫持了 Axios ...

Axios npm版本遭恶意植入远程控制代码 开发者需警惕并自查

安全研究机构StepSecurity近日披露,知名Java库Axios的两个npm版本——[email protected][email protected],遭黑客植入恶意代码。此次攻击通过劫持核心维护者“jasonsaayman”的npm账号实施,黑客将账号邮箱替换为匿名ProtonMail地址后,绕过GitHub Actions自动化流程,手动发布了被污染的版本,并通过npm CLI直接上传恶意安装包。
Security Boulevard

Frequently Asked Questions About the Axios npm Supply Chain Attack by North Korea-Nexus ...

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...