technology@hexbear.netEnglish · 3 months ago

GitLab discovers widespread npm supply chain attack

about.gitlab.com

GitLab discovers widespread npm supply chain attack

about.gitlab.com

☆ Yσɠƚԋσʂ ☆@lemmygrad.ml to

technology@hexbear.netEnglish · 3 months ago

Malware driving attack includes "dead man's switch" that can harm user data.

You must log in or register to comment.

Chat

nasezero [comrade/them]@hexbear.net
link
fedilink
English
arrow-up
10·
3 months ago
Same week that an arbitrary code execution attack was discovered in React Server Components lmao
- ☆ Yσɠƚԋσʂ ☆@lemmygrad.mlOP
  link
  fedilink
  English
  arrow-up
  8·
  3 months ago
  another day, another js ecosystem disaster
peeonyou [he/him]@hexbear.net
link
fedilink
English
arrow-up
5·
3 months ago
well if it isn’t another wednesday
- invalidusernamelol [he/him]@hexbear.net
  link
  fedilink
  English
  arrow-up
  4·
  3 months ago
  I’m more surprised by a day without a major npm attack at this point.

technology@hexbear.net

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@hexbear.net

On the road to fully automated luxury gay space communism.

Spreading Linux propaganda since 2020

Rules:

1. Obviously abide by the sitewide code of conduct. Bigotry will be met with an immediate ban
2. This community is about technology. Offtopic is permitted as long as it is kept in the comment sections
3. Although this is not /c/libre, FOSS related posting is tolerated, and even welcome in the case of effort posts
4. We believe technology should be liberating. As such, avoid promoting proprietary and/or bourgeois technology
5. Explanatory posts to correct the potential mistakes a comrade made in a post of their own are allowed, as long as they remain respectful
6. No crypto (Bitcoin, NFT, etc.) speculation, unless it is purely informative and not too cringe
7. Absolutely no tech bro shit. If you have a good opinion of Silicon Valley billionaires please manifest yourself so we can ban you.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

241 users / day
631 users / week
1.39K users / month
2.91K users / 6 months
44 local subscribers
24.3K subscribers
4.26K Posts
39.8K Comments
Modlog