Hundreds of code libraries posted to NPM try to install malware on dev machines
Hundreds of code libraries posted to NPM try to install malware on dev machines
arstechnica.com Hundreds of code libraries posted to NPM try to install malware on dev machines
These are not the the developer tools you think they are.
7
comments
Let's see how long it will alles Till Rust hast the same Problems.
2 9 ReplyPython with PyPI, C# with Nuget, Docker with Dockerhub, Java with Maven Central, hell even just regular Linux packages from dodgy repositories...
Supply chain attacks concern almost everything everyone everywhere.
12 0 ReplyThis is one of the more important reasons to minimize dependencies and be very picky about the ones we adopt.
6 0 Reply
You've viewed 7 comments.
Scroll to top