TechnologyEnglish • 1 day ago

Hundreds of code libraries posted to NPM try to install malware on dev machines

arstechnica.com

215

Hundreds of code libraries posted to NPM try to install malware on dev machines

arstechnica.com

TechnologyEnglish • 1 day ago

These are not the the developer tools you think they are.

Chat

@LavenderDay3544
link
English
2•2 hours ago
I really think every package repository should be opt in and every publisher should be required to verify their identity and along with checksum verification for the downloaded files.

Technology

[email protected]

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

4.15K users / day
10.2K users / week
17.9K users / month
35.2K users / 6 months
59.1K subscribers
12.1K Posts
548K Comments
Modlog