btaf45@lemmy.world to Technology@lemmy.worldEnglish · 2 months agoHundreds of code libraries posted to NPM try to install malware on dev machinesarstechnica.comexternal-linkmessage-square35fedilinkarrow-up1251arrow-down12cross-posted to: pulse_of_truth@infosec.pubprogramming@programming.devcybersecurity@sh.itjust.works
arrow-up1249arrow-down1external-linkHundreds of code libraries posted to NPM try to install malware on dev machinesarstechnica.combtaf45@lemmy.world to Technology@lemmy.worldEnglish · 2 months agomessage-square35fedilinkcross-posted to: pulse_of_truth@infosec.pubprogramming@programming.devcybersecurity@sh.itjust.works
minus-squarebokherif@lemmy.worldlinkfedilinkEnglisharrow-up18·2 months agoYou’d be surprised to see how many common libraries have vulnerabilities every week.
minus-squareTheInternetIsForLargeShrimp@lemmynsfw.comlinkfedilinkEnglisharrow-up11·2 months agoAs well as how many common JS libraries, while not malicious have no business existing (ex. IsEven).
You’d be surprised to see how many common libraries have vulnerabilities every week.
As well as how many common JS libraries, while not malicious have no business existing (ex. IsEven).