TechTakes

2139 readers

174 users here now

Big brain tech dude got yet another clueless take over at HackerNews etc? Here's the place to vent. Orange site, VC foolishness, all welcome.

This is not debate club. Unless it’s amusing debate.

For actually-good tech, you want our NotAwfulTech community

founded 2 years ago

MODERATORS

dgerard@awful.systems

186

Vibe-coded build system NX gets hacked, steals vibe-coders’ crypto (pivot-to-ai.com)

submitted 1 day ago by dgerard@awful.systems to c/techtakes@awful.systems

23 comments fedilink hide all child comments

a clown car of clown cars that deploys another clown car, that explodes

https://www.youtube.com/watch?v=vnFKkBBzpVg&list=UU9rJrMVgcXTfa8xuMnbhAEA - video
https://pivottoai.libsyn.com/20250829-vibe-coded-build-system-nx-steals-vibe-coders-crypto - podcast

you are viewing a single comment's thread
view the rest of the comments

[–] Architeuthis@awful.systems 7 points 23 hours ago

It's like a one-and-a-half-page article that also comes in audio and video form, don't be lazy.

spoiler

They vibe coded a bash injection vulnerability in their devops code, which was used to gain access to the repo and push out a release with malicious code, which prompted any installed LLM wrappers like cursor to gather anything that looked like a configuration or text file in the infected machine and presumably leak them to the attacker.