**chirp** @minus@nanao.cybtex.fr · 08 sept. 2025, 15:59

**chirp** @minus@nanao.cybtex.fr · 08 sept. 2025, 15:59

Douze (12) paquets hébergés sur npmjs.com contiennent du code malveillant. #npm #javascript #development #registry #money #malware #packages #web #threats #informatique

« Malicious javascript compromise on npmjs.com. These packages, about a billion downloads prior. » ( Kevin Beaumont )

**chirp** @minus@nanao.cybtex.fr · 2025-09-24T09:23:27Z

chirp @minus@nanao.cybtex.fr

Authentication & secure publishing practices — In direct response to this incident, GitHub has taken swift & decisive action. [ https://github.blog/security/supply-chain-security/our-plan-for-a-more-secure-npm-supply-chain/ ] #informatique