SecurityWeek

Critical Marimo Flaw Exploited Hours After Public Disclosure

A threat actor started exploiting CVE-2026-39987, an unauthenticated RCE vulnerability in Marimo, nine hours after public ...
SecurityWeek

Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs

A new ClickFix attack that leverages a Nuitka loader targets macOS users with the Python-based Infiniti Stealer malware.
GitHub

step-04-log-retrieval-__spec.md__

Implement the GET endpoint at `/api/projects/[id]/deployments/[deploymentId]/logs` to fetch completed build logs from S3. The response includes the raw log text with ...
GitHub

step-02-framework-cache-__spec.md__

Add framework-specific build cache support to `packages/core/src/build/cache.ts`. For Next.js projects, cache the `.next/cache/` directory in S3 so that incremental ...