Resident PulserB to Pulse of TruthEnglish · 7 hours agoHundreds of code libraries posted to NPM try to install malware on dev machinesarstechnica.comexternal-linkmessage-square1fedilinkarrow-up14arrow-down10file-textcross-posted to: technology@lemmy.worldprogramming@programming.devcybersecurity@sh.itjust.works
arrow-up14arrow-down1external-linkHundreds of code libraries posted to NPM try to install malware on dev machinesarstechnica.comResident PulserB to Pulse of TruthEnglish · 7 hours agomessage-square1fedilinkfile-textcross-posted to: technology@lemmy.worldprogramming@programming.devcybersecurity@sh.itjust.works
minus-squarehorse_battery_staple@lemmy.worldlinkfedilinkEnglisharrow-up2·7 hours agoAll I ever read about NPM are supply chain attacks. Honest question, why is that so?
