The Hacker News

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

While the Windows maker did not attribute the activity to a specific threat actor, the use of VS Code tasks and Vercel domains to stage malware is a tactic that has been adopted by North Korea-linked ...

Extract Hyperlink Addresses in Excel with VBA or Office Scripts

Office Scripts extract Excel hyperlink URLs without macros; results are hardcoded so the file can stay .xlsx, reuse is straightforward.
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
GitHub

TypeScript support for k6

That's it. A test written in TypeScript can be run directly with k6. No need for Node.js, babel, webpack, bundler, build step, etc. Do you think modern JavaScript features make TypeScript pointless?