What 5 Million Apps Revealed About Secrets in JavaScript

Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder's research team built a new secrets detection method and scanned 5 ...

Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...
GitHub

The most simple WebAuthn (Passkeys) helper for browsers.

Your support allows me to keep this package free, up-to-date and maintainable. Alternatively, you can spread the word! These functions check if WebAuthn is supported, and also if user verification ...
GitHub

A minimalist JavaScript user script loader and manager for modern browsers.

In order to use this extension, you need Chrome 120 or above, and developer mode enabled. You need to write the metadata as comments at the beginning of the script, refer to the example for the format ...