Malware-poisoned versions of the widely used JavaScript library @solana/web3.js were distributed via the npm package registry, according to an advisory issued Wednesday by project maintainer ...

Unlike the Microsoft-owned GitHub, which requires a quick workaround in order to use smart contracts, Hines told CoinDesk Web3 developers will be able to deploy software directly from the Terminal ...

Supply chain attack: Solana web3.js library was infected with malicious code Unknown attackers have equipped Solana's JavaScript SDK with malicious code to steal private keys.

Web3 developer Brian Guan lost $40,000 after accidentally making his wallet keys public on GitHub.

GitHub has resolved numerous vulnerabilities in Node.js packages tar and @npmcli/arborist, with the worst allowing file overwrites and arbitrary code execution.

Coinbase-Backed ConsenSys Alum Aims to Build GitHub for Web3 Harrison Hines, a former ConsenSys token guru, is building a developer hub for the decentralized web via his startup Terminal.