btaf45@lemmy.world to Technology@lemmy.worldEnglish · 17 days agoHundreds of code libraries posted to NPM try to install malware on dev machinesarstechnica.comexternal-linkmessage-square35fedilinkarrow-up1251arrow-down12cross-posted to: pulse_of_truth@infosec.pubprogramming@programming.devcybersecurity@sh.itjust.works
arrow-up1249arrow-down1external-linkHundreds of code libraries posted to NPM try to install malware on dev machinesarstechnica.combtaf45@lemmy.world to Technology@lemmy.worldEnglish · 17 days agomessage-square35fedilinkcross-posted to: pulse_of_truth@infosec.pubprogramming@programming.devcybersecurity@sh.itjust.works
minus-squarebokherif@lemmy.worldlinkfedilinkEnglisharrow-up18·17 days agoYou’d be surprised to see how many common libraries have vulnerabilities every week.
minus-squareTheInternetIsForLargeShrimp@lemmynsfw.comlinkfedilinkEnglisharrow-up11·17 days agoAs well as how many common JS libraries, while not malicious have no business existing (ex. IsEven).
You’d be surprised to see how many common libraries have vulnerabilities every week.
As well as how many common JS libraries, while not malicious have no business existing (ex. IsEven).