Most AI tools stop when you stop. Devin in Windsurf 2.0 doesn’t. It runs on its own VM after you close your laptop. Debugging, testing, deploying. The PR is waiting when you return. Live today in Windsurf 2.0.

🚨USE THIS GUIDE TO PROTECT YOUR COMPUTER FROM NPM HACKS THAT STEAL EVERYTHING IN ONE INSTALL TanStack, a code library used in millions of web apps, got hacked on Monday one install steal every password, key, and credential on your computer this is far not the first hack this month and definitely just the beginning Here's how to protect your machine: [ 1. lock down npm with a 7-day cooldown ]: open ~/.npmrc. keep all existing lines (auth tokens, registry config). append: """ min-release-age=7 minimum-release-age=10080 save-exact=true """ this makes npm refuse any package version published in the last 7 days. attack windows are usually under 24 hours, you skip them entirely [ 2. same cooldown for bun ]: open ~/.bunfig.toml (create if missing). append: """ [install] minimumReleaseAge = 604800 """ 7 days in seconds, same protection in bun's config format [ 3. pin every npm dependency in your projects ]: open package.json. strip every ^ and ~ from versions under: - dependencies - devDependencies - peerDependencies exact versions only. commit your lockfile (bun.lock / package-lock.json / pnpm-lock.yaml) to git so the resolved tree is frozen [ 4. same discipline for python ]: if you use uv (the modern default): commit uv.lock, run `uv sync` to restore if you use pip: requirements.txt with pinned versions, run `pip install --require-hashes -r requirements.txt` if you use poetry: commit poetry.lock, use `poetry install --no-update` never trust `>=` or `~=` ranges in production projects [ 5. pin GitHub Actions to commit SHAs ]: stop using `actions/checkout@v4`. switch to: ```yaml uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 ``` every third-party action runs in your CI with access to repo secrets. pinning the SHA means a compromised maintainer cannot push malicious code into your pipeline [ 6. audit your IDE extensions ]: Cursor, VSCode, Windsurf, every extension is code running with full access to your filesystem, clipboard, and open files - review installed extensions monthly - remove anything you haven't actively used in 30 days - check the publisher, install count, last update, GitHub source before installing - never install extensions that ask for permissions they shouldn't need [ 7. lock down API tokens and credentials ]: - never commit .env to git (add to .gitignore on every project, no exceptions) - use minimum-scope tokens: one repo, one bucket, one workspace - rotate API keys every 90 days, force expiry on critical ones - separate tokens by environment (dev / staging / prod) - enable 2FA on every developer account: GitHub, npm, PyPI, Cloudflare, AWS, OpenAI, Anthropic - never paste secrets into Claude / ChatGPT / any AI chat, they're logged [ 8. set up continuous monitoring ]: - enable Dependabot alerts on every repo (free, takes 2 minutes) - install or Snyk for live vulnerability scanning - subscribe to the npm and PyPI security advisory feeds - follow @snyksec, @socketsecurity, @stepsecurity for early warnings [ 9. how to detect if you got the TanStack payload ]: if you installed any @tanstack/* package between 19:20 and 19:30 UTC on Monday, May 11, treat the host as compromised the detection signature: a malicious manifest contains "optionalDependencies": { "@tanstack/setup": "github:tanstack/router#79ac49ee#..." } any version with this entry is compromised. the payload is delivered via the git-resolved optionalDependency, whose prepare script runs router_init.js (~2.3 MB, smuggled into the tarball root) how to check fast: - search your lockfile for `@tanstack/setup` references - search node_modules for any `router_init.js` file - if either shows up, jump to section 10 immediately future attacks will use the same trick: malicious code hidden in optionalDependencies or postinstall/prepare scripts. add `grep -r "postinstall\|prepare" node_modules/*/package.json | grep -iE "curl|wget|eval|base64"` to your weekly audit routine [ 10. emergency response if you're already compromised ]: ran an install during a suspected attack window? do this in this exact order: - rotate every cloud credential: AWS, GCP, Kubernetes service accounts, Vault tokens - rotate GitHub personal access tokens, OAuth tokens, SSH keys - revoke active sessions on GitHub, npm, PyPI, all cloud providers - audit AWS / GCP / Kubernetes / Vault audit logs for the last several hours, look for unauthorized API calls - pin to the last known-good version of every @tanstack package and reinstall from a clean lockfile - check ~/.npm, ~/.config, browser cookie stores for tampered files - wipe ~/.bash_history, ~/.zsh_history, local AI chat logs that might have secrets - if you ran the install as root or with sudo: nuke the machine, reinstall from scratch, restore code from git only [ why this matters right now ]: attack chains in supply chain hacks usually only last a few hours before the malicious package gets caught and yanked. during those hours, every developer running `npm install` becomes a victim worse: npm couldn't even UNPUBLISH most of the TanStack malicious versions because of third-party dependencies. the registry's own safeguards are part of the problem. you can't rely on the platform, you have to protect yourself the patterns from the last 18 months: - npm: TanStack on May 11 (42 packages, AWS/GCP/Vault credentials), Shai-Hulud worm hit Nx packages, chalk/debug/ansi-styles worm hit qix maintainer - GitHub Actions: tj-actions/changed-files compromise exposed thousands of repos' secrets - PyPI: ongoing typosquatting campaigns targeting AI/ML packages - IDE extensions: VSCode marketplace caught hosting credential stealers the frequency is rising because the payoff is massive one compromised package lands on millions of machines in hours if you don't lock this down tonight, you're exposed to the next one. and there will be one 30 minutes tonight, or wait for the next attack to clean out your machine Full TanStack breakdown:

We built something that nobody else in this space has even attempted. Let me walk you through everything inside MPP32. The problem is simple. AI agents can call functions. But the second that function costs money, everything breaks. You need accounts at every provider. API keys for each one. Custom billing code. Budget tracking. Payment handlers. For every single service your agent touches. We killed all of that. MPP32 is a universal payment proxy for AI agents. One MCP server install. One line in your config. Your agent now has access to over 4,500 machine payable APIs across every category you can think of. Token intelligence. Market data. Web search. Image generation. DeFi analytics. Wallet scoring. Trading signals. On chain queries. All of it. Here is what makes this different from anything else out there. FIVE payment protocols. Not one. Five. x402 on Solana. x402 on Base. Tempo on Ethereum L2. ACP checkout sessions. AP2 with W3C Verifiable Credentials. AGTP with agent identity certificates. Your agent picks whichever one matches the keys you have configured. You write zero protocol code. The payment flow is dead simple. Agent requests a service. Gets a 402 challenge back. Our MCP server detects which protocol to use, signs the transaction LOCALLY on your machine, retries with proof, and returns the data. Your keys never leave your device. MPP32 never touches the money. Settlement goes directly from your wallet to the provider wallet. On chain. Verified. Auditable forever on Solscan or Basescan. We built an escrow pattern into x402 that nobody else has. The payment signature gets verified immediately but settlement only happens AFTER the upstream service returns a valid response. If the service fails or returns garbage, you do not get charged. Period. No other payment proxy does this. Now the Intelligence Oracle. This is our native Solana token analysis engine pulling from DexScreener, Jupiter, and CoinGecko simultaneously. For eight tenths of a penny per query you get an Alpha Score from 0 to 100, a Rug Risk rating on a 10 point scale, smart money signals including volume spikes and buy pressure and whale accumulation patterns, a 24 hour pump probability percentage, projected ROI ranges, whale activity levels with recent buy and sell counts, full market data including price changes across 1h 24h and 7d windows, volume, liquidity, market cap, FDV, pair age, DEX ID, and Twitter followers. All merged. All real time. All paid automatically through the protocol your agent already has configured. For M32 token holders we built three exclusive APIs that nobody else can access. Hold 1 million M32 and you unlock the Whale Tracker. Top 20 holder analysis. Concentration risk scoring. Buy and sell pressure tracking across 5 minute, 1 hour, 6 hour, and 24 hour windows. Volume spike detection. Whale accumulation versus distribution signals. Composite whale score from 0 to 100. Free for qualifying holders. Hold 2.5 million M32 and you unlock Token Comparison. Head to head intelligence on any two tokens. Alpha scores face off. Rug risk comparison. Volume and liquidity matchup. Pump probability side by side. Buy pressure comparison. Returns a winner verdict with full score breakdown. Also free. Hold 5 million M32 and you unlock the Portfolio Scanner. Point it at any Solana wallet. It automatically detects all SPL tokens, excludes stablecoins, runs full intelligence analysis on the top 10 holdings, aggregates portfolio risk, estimates total value in USD, identifies highest risk and best alpha tokens, scores diversification from 1 to 10, and breaks down holder concentration and buy sell pressure per token. Free. Discount tiers for everyone else. 250K M32 gets you 20% off every query. 1 million M32 gets you 40% off. Once we ship SIWS verification these activate automatically based on your on chain balance. No subscriptions. No accounts. Just hold the token. For API providers this is where it gets wild. Register your service at Fill out the form. Get approved instantly. Start receiving payments directly to your wallet within minutes. The fee we take? Zero percent. Providers keep 100% of revenue. Settlement is direct wallet to wallet. No batching. No minimum thresholds. No monthly payouts. x402 on Solana confirms in roughly 10 seconds. You see the money in your wallet before you finish reading this sentence. Register once and you automatically accept all five payment protocols. You do not need to implement Tempo. You do not need to implement ACP. You do not need to understand AP2 or AGTP. MPP32 handles all verification and settlement for every protocol. You just run your API. Every provider gets a full analytics dashboard. Real time query counts. Requests broken down by 24 hours, 7 days, and all time. Success rate. Average latency. Error counts. Estimated revenue. Per protocol usage metrics. Health monitoring with automatic endpoint checks. Three consecutive failures suspend your listing. Come back online and it auto recovers. Your listing gets published to our federated catalog of 4,500+ services. It gets added to our OpenAPI 3.1 spec that regenerates dynamically. It shows up in our A2A agent card at .well known/agent.json for agent to agent discovery. It appears in our MCP configuration endpoint. Every agent using MPP32 can now find and pay for your service without ever visiting your website. The catalog itself pulls from four sources. Native services registered through us. Curated free APIs like DexScreener and Jupiter and CoinGecko. The x402 Bazaar from Coinbase. And the official Model Context Protocol registry. All searchable. All filterable by category, protocol, source, network, chain, health status, price range, and verification status. Over 50 categories spanning AI inference, image generation, translation, embeddings, web search, news feeds, financial data, crypto analytics, DeFi, NFT intelligence, wallet scoring, OCR, document parsing, identity verification, fraud detection, code intelligence, security scanning, and dozens more. Budget controls are built into the infrastructure. Set a total session cap. Set an hourly velocity limit. Set an alert threshold. If your agent hits the limit a circuit breaker trips automatically and blocks all further spending. You get a clear error with the reason and a remedy. Reset manually when you are ready. Update budgets on the fly. If you raise the limit past current spend the breaker auto resets. Full spending analytics per service and per protocol available through the API. Security is not an afterthought. SSRF protection blocks requests to all private IP ranges, loopback addresses, link local addresses, IPv6 unique local, and cloud metadata endpoints. Applied on provider registration AND on every single proxy request because DNS can drift. All API keys hashed at rest with SHA256. Database leak does not expose live credentials. Management tokens for providers also hashed. Recovery OTPs hashed before storage with 15 minute expiry. Rate limiting on every admin endpoint. Zod schema validation on all inputs. Body size limits at 1MB. Path traversal prevention. URL validation. The server refuses to boot in production if signing secrets are missing or match known defaults. Idempotency is built in from day one. Every paid request gets an automatic idempotency key. LRU bounded cache at 5,000 entries with 10 minute TTL. Network retries cannot cause duplicate charges. Bounded memory so it does not bloat. The MCP server ships with eight tools. list_mpp32_services for browsing the catalog. call_mpp32_endpoint for calling any service with automatic payment. get_solana_token_intelligence for the oracle. get_m32_whale_tracker and compare_tokens_m32 and scan_portfolio_m32 for token gated premium features. manage_agent_budget for circuit breaker and spending controls. get_mpp32_diagnostics for troubleshooting. Works with Claude Desktop. Claude Code. Cursor. Windsurf. One npm install and you are live. We also ship a TypeScript SDK on npm. Import MPP32, pass your Solana key, call analyze() or listServices() or callService(). Automatic 402 handling. Automatic protocol detection. Automatic retry with exponential backoff. Configurable timeouts. Custom headers. Works in any Node.js environment. Agent sessions last 30 days. Full transaction logs showing every call with the service name, protocol used, price quoted, discount applied, price settled, settlement transaction signature, latency, and success status. Per protocol breakdowns with request counts, settled volume, and average latency for each of the five protocols independently. On chain verification means every single dollar that moves through this system is permanently recorded on the blockchain. Solana transactions on Solscan. Base transactions on Basescan. Immutable. Auditable by anyone. We are not asking you to trust us. We are asking you to verify. No subscriptions. No monthly fees. No account fees. No API key fees. No discovery fees. No settlement fees. No early termination fees. No minimums. You pay for what you use, the provider gets paid instantly, and the blockchain proves it happened. This is MPP32. The payment layer for autonomous AI agents. 4,500+ services. Five protocols. Zero platform fee. Instant on chain settlement. Token gated premium intelligence. Infrastructure grade budget controls. And we are just getting started. Ive put everything into this project and will continue to do so no matter what happens with the chart.. The full scale agent economy isn't even here yet. solana:6hKtz8FV7cAQMrbjcBZeTQAcrYep3WCM83164JpJpump