The Hacker News

New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing

FROST uses JavaScript and OPFS SSD timing to identify websites at 88.95% F1, exposing cross-browser privacy leaks.
The Hacker News

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

Codex tokens were exfiltrated via a popular npm package, affecting users since v0.1.82 and enabling persistent account access ...
GitHub

Netlify Primitives

Implementation of different Netlify platform primitives. Includes both developer-facing utilities as well as the logic required for the local emulation of each primitive to aid local development ...
GitHub

codegrue/auto-translate-json

Adds a context menu item to translation files to automatically translate them into other languages using Google Translate, AWS Translate, Azure Translate, DeepL, OpenAI, or Hugging Face (cloud & local ...