On March 15, 2022, users of the popular Vue.js frontend #JavaScript #framework started experiencing what can only be described as a #supply chain attack impacting the npm ecosystem. This was the result of the nested dependencies node-ipc and peacenotwar being sabotaged as an act of protest by the maintainer of the node-ipc package. #vuln #cyber #threats #informatique

hhttps://snyk.io/blog/peacenotwar-malicious-npm-node-ipc-package-vulnerability/