The Hacker News

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.
GitHub

Free Figma plugin that imports Pencil (.pen) design files as fully editable Figma documents.

Open your .pen file in Pencil, then use Claude Code with this prompt: Export my .pen file to JSON for the Figma importer. Use batch_get with readDepth 10 to get all nodes, and get_variables to get all ...