btaf45@lemmy.world to Technology@lemmy.worldEnglish · 9 months agoHundreds of code libraries posted to NPM try to install malware on dev machinesarstechnica.comexternal-linkmessage-square13fedilinkarrow-up1184arrow-down12
arrow-up1182arrow-down1external-linkHundreds of code libraries posted to NPM try to install malware on dev machinesarstechnica.combtaf45@lemmy.world to Technology@lemmy.worldEnglish · 9 months agomessage-square13fedilink
minus-squareBell@lemmy.worldlinkfedilinkEnglisharrow-up3arrow-down11·9 months agoThis should kill off NPM
minus-squarebokherif@lemmy.worldlinkfedilinkEnglisharrow-up10·9 months agoYou’d be surprised to see how many common libraries have vulnerabilities every week.
minus-squareTheInternetIsForLargeShrimp@lemmynsfw.comlinkfedilinkEnglisharrow-up8·8 months agoAs well as how many common JS libraries, while not malicious have no business existing (ex. IsEven).
minus-square🇦🇺𝕄𝕦𝕟𝕥𝕖𝕕𝕔𝕣𝕠𝕔𝕠𝕕𝕚𝕝𝕖@lemm.eelinkfedilinkEnglisharrow-up8arrow-down6·9 months agoWhy stop there lets just kill js in its entirity.
This should kill off NPM
You’d be surprised to see how many common libraries have vulnerabilities every week.
As well as how many common JS libraries, while not malicious have no business existing (ex. IsEven).
Why stop there lets just kill js in its entirity.