HOW TO AVOID RIGGED NPM PACKAGES.
Today, Axios, one of the most popular packages on npm, got compromised. Axios is an HTTP request client.
If you installed axios from the npm package repository, you are screwed now. Your organisation is screwed as well.
But this can be avoided.
Use pnpm, a drop-in replacement for npm.
It has the minimumReleaseAge setting to avoid fresh releases. The compromised releases are likely to be noticed within a week.
https://pnpm.io/supply-chain-security…

Twitter

Source: Synced

Just now, a historic "closed-door" event occurred in the AI community.

Anthropic has officially banned access to OpenClaw using its own subscription plan!!!

Boris Cherny, the creator of Claude Code, announced: Starting at 3 PM EST on April 4th (3 AM Beijing time on April 5th), Claude will block all third-party tools; access to these tools will only be available through additional subscription plans or APIs.

[OpenClaw] This means that thousands of users who rely on OpenClaw for improvements...

Anthropic officially blocks OpenClaw, causing a global developer crisis within 24 hours.

The most visible bitcoin buyers in the world are buying at near-record pace. It is not enough.
A CryptoQuant weekly report showed overall 30-day apparent demand at negative 63,000 $BTC as of late Marc...

Five data sources say the same thing about bitcoin market. It's thinning from the inside

Boris Cherny, head of the Anthropic Claude Code, announced that starting in April 2026 [...]
The article, "Anthropic Subscribes to Claude Code and Bans OpenClaw Lobster! From Now On, Third-Party Tools Will Only Be Available with Paid Quotas," was originally published on BlockTempo, the most influential blockchain ABMedia media.