Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
GitHub

Immutable collections for JavaScript

Read the docs and eat your vegetables. Immutable data cannot be changed once created, leading to much simpler application development, no defensive copying, and enabling advanced memoization and ...
GitHub

Semantic Architecture & Retrieval Analysis System (SARAS)

Codebase intelligence for AI agents and developers. Reduce LLM context length by giving your agent precise, relevant code instead of entire files. SARAS indexes your codebase into vector embeddings ...