cyrano@piefed.social to Technology@lemmy.worldEnglish · 2 days agoShai-Hulud Returns: Over 300 NPM Packages Infectedhelixguard.aiexternal-linkmessage-square14fedilinkarrow-up179arrow-down13file-text
arrow-up176arrow-down1external-linkShai-Hulud Returns: Over 300 NPM Packages Infectedhelixguard.aicyrano@piefed.social to Technology@lemmy.worldEnglish · 2 days agomessage-square14fedilinkfile-text
minus-squareEldritch@piefed.worldlinkfedilinkEnglisharrow-up5·2 days agoArch checking in. It may happen less. But it still does.
minus-squareorclev@lemmy.worldlinkfedilinkEnglisharrow-up8·2 days agoTo be fair to Arch, the AUR was always advertised as a caveat emptor type thing. It never really claimed to be secure in the first place.
It happens in python pip too.
Arch checking in. It may happen less. But it still does.
To be fair to Arch, the AUR was always advertised as a caveat emptor type thing. It never really claimed to be secure in the first place.
That is fair.