145

‘No Way To Prevent This,’ Says Only Package Manager Where This Regularly Happens (kevinpatel.xyz)

submitted 1 day ago by davel@lemmy.ml to c/programmerhumor@lemmy.ml

13 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] davel@lemmy.ml 9 points 1 day ago

The recent attack didn’t have to do with cryptographic signatures. It was a supply chain worm, with GitHub Actions being the vector. https://snyk.io/blog/tanstack-npm-packages-compromised/

this post was submitted on 16 May 2026

145 points (97.4% liked)

Programmer Humor

42188 readers

194 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

Posts must be relevant to programming, programmers, or computer science.
No NSFW content.
Jokes must be in good taste. No hate speech, bigotry, etc.

founded 6 years ago

MODERATORS

AgreeableLandscape@lemmy.ml

cat_programmer@lemmy.ml