☆ Yσɠƚԋσʂ ☆@lemmygrad.ml to Technology@lemmygrad.mlEnglish · 6 days agoGitLab discovers widespread npm supply chain attackabout.gitlab.comexternal-linkmessage-square24fedilinkarrow-up128arrow-down10cross-posted to: [email protected]
arrow-up128arrow-down1external-linkGitLab discovers widespread npm supply chain attackabout.gitlab.com☆ Yσɠƚԋσʂ ☆@lemmygrad.ml to Technology@lemmygrad.mlEnglish · 6 days agomessage-square24fedilinkcross-posted to: [email protected]
minus-squarechgxvjh [he/him, comrade/them]@hexbear.netlinkfedilinkEnglisharrow-up4·5 days agoYeah with closed source you often very difficult to tell what dependencies they have included but it’s almost certain they have some unvetted decencies.
Yeah with closed source you often very difficult to tell what dependencies they have included but it’s almost certain they have some unvetted decencies.