Hackers' Pub

Syntax	Description	Examples
`"` keyword `"`	Finds the string within quotes, including spaces. Case-insensitive. (Escape quotes inside with `\"`)	`"Hackers' Pub"`
`from:` handle	Finds content written by the specified user.	`from:hongminhee` `from:hongminhee@hollo.social`
`lang:` ISO 639-1	Finds content written in the specified language.	`lang:en`
`#` tag	Finds content with the specified tag. Case-insensitive.	`#HackersPub`
condition condition	Finds content that satisfies both conditions on either side of the space (logical AND).	`"Hackers' Pub" lang:en`
condition `OR` condition	Finds content that satisfies at least one of the conditions on either side of the OR operator (logical OR).	`#HackersPub OR "Hackers' Pub" lang:en`
`(` condition `)`	Combines the operators within the parentheses first.	`(#HackersPub OR "Hackers' Pub" OR "Hackers Pub") lang:en`

const _0x112 @fasterthanlime@hachyderm.io

9/8/2025, 5:58:17 PM

Public

try {
args = JSON.parse(JSON.stringify(argsIn));
} catch (e) {
args = [...argsIn];
}

Ah see? I'm not the only one who didn't know about structuredClone

const _0x112 @fasterthanlime@hachyderm.io

9/8/2025, 7:23:50 PM

Public

Here's the NPM supply chain attack payload deobfuscated & cleaned up by hand as best I could: https://github.com/fasterthanlime/0x112

...I'm not sure it would ever work in its current form, tbh

GitHub - fasterthanlime/0x112: De-obfuscated payload from the September 8 2025 npm supply chain attack

De-obfuscated payload from the September 8 2025 npm supply chain attack - fasterthanlime/0x112

github.com · GitHub

If you have a fediverse account, you can quote this note from your own instance. Search https://hachyderm.io/users/fasterthanlime/statuses/115170307668363215 on your instance and quote it. (Note that quoting is not supported in Mastodon.)