socket.dev
news
socket.dev
IrregularChat: Purple Team
4w ago
Socket’s threat research team uncovered a new PyPI wave tied to the broader Mini Shai-Hulud, Miasma, and Hades supply chain campaign. The latest wave adds 23 newly identified package-version artifacts
Semgrep reports that the PyPI package **lightning**—a widely used deep learning framework for training and inference—was compromised in versions **2.6.2** and **2.6.3** in a supply chain attack publis
Qwen/Qwen3-TTS-12Hz-1.7B-VoiceDesign · Hugging Face
news
huggingface.co
IrregularChat: Fabrication
Apr 17
Qwen/Qwen3-TTS-12Hz-1.7B-VoiceDesign is a Hugging Face text-to-speech model from the Qwen3-TTS family, released in January 2026 under the Apache-2.0 license. It is a multilingual speech generation sys
How uv got so fast | Andrew Nesbitt
news
nesbitt.io
an0pin2q61hkx4UycDQ0nXZ9w29sAdS7Pgb2SDqGMwc=
Dec 27
The article discusses the speed of the `uv` package manager, which installs packages faster than `pip`, emphasizing that its performance is not solely attributed to being written in Rust. Key design d