Twitter | Search | |
Krasimir Tsonev
An idea - you gain an access to a popular npm account. Then release a new minor version containing your virus. The day after hundred of developers will update their dependencies and your virus will be spread across the web. Don't believe? Read this
Updated blog post: https://eslint.org/blog/2018/07/postmortem-for-malicious-package-publishes Update from the maintainers Incident status report from npm Please follow the comment by @platinumazure...
GitHub GitHub @github
Reply Retweet Like More