RT @garybernhardt: An NPM package with 2,000,000 weekly downloads had malicious code injected into it. No one knows what the malicious code…

A murb'ed feed, posted about 6 years ago filed in garybernhardt.

Go to the original link.