gnabgib
12 hours ago
Dupe: https://news.ycombinator.com/item?id=45256210
Although this isn't Feross' or his company's story.. Daniel Pereira found it first (https://www.linkedin.com/in/daniel-pereira-b17a27160/)
Popular npm package compromised in a sophisticated attack affecting 40+ packages
2 pointsposted 13 hours ago
by claviska