New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.

An experimental Rust compiler is intended to replace the previous Go compiler, and the Astro dev server now supports custom runtimes.