btaf45@lemmy.world to

Technology@lemmy.worldEnglish · 2 months ago

Hundreds of code libraries posted to NPM try to install malware on dev machines

arstechnica.com

cross-posted to:
programming@programming.dev

248

Hundreds of code libraries posted to NPM try to install malware on dev machines

arstechnica.com

btaf45@lemmy.world to

Technology@lemmy.worldEnglish · 2 months ago

cross-posted to:
programming@programming.dev

These are not the the developer tools you think they are.

Chat

bokherif@lemmy.world
link
fedilink
English
arrow-up
18·
2 months ago
You’d be surprised to see how many common libraries have vulnerabilities every week.
- TheInternetIsForLargeShrimp@lemmynsfw.com
  link
  fedilink
  English
  arrow-up
  11·
  2 months ago
  As well as how many common JS libraries, while not malicious have no business existing (ex. IsEven).

Technology@lemmy.world

technology@lemmy.world

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@lemmy.world

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

3.95K users / day
8.51K users / week
15K users / month
32.5K users / 6 months
1 local subscriber
60.1K subscribers
7.53K Posts
254K Comments
Modlog