> My next step is exploring OpenRouter and other models
May I suggest using Cortecs.ai then? OpenRouter is US-based as well and since you have been bitten by this already perhaps it's really time to change course? :)
But it also shows the number of removed reviews (in a range like 0-50, 50-100 and so forth). If you encounter a restaurant with 5 starts but a lot of removed reviews you know whats up.
So can VRAM actually be used like regular RAM? E.g. if I have a 16GB module and my GPU has 16GB VRAM, could it be made so that my system reports 32GB RAM? What would be the implications of that?
> since a malicious npm package already installed can get its payloads from a C2 server, it doesn't need an npm update
In general I agree, but I think these two vulns are 0day-y and pretty much every major distro is affected AFAIU, so there is perhaps slightly more potential than usual
Either my reading of your comment is wrong or you misunderstood the supply chain comment by OP I think: what they mean is that a supply chain attack that gets the exploit on a system would be great now because the reported vulns are unfixed pretty much everywhere