 |
For those who don’t know what Shai-Hulud 2.0 is, it’s basically an npm package worm that’s been spreading for the past week. It infects packages by hooking into the preinstall script. I’ll be posting the source code and a detailed write-up soon https://x.com/sarwaroffline [link] [comments] |
![[link]](https://i.redd.it/vy6ayksyd94g1.png){kind=link}
from hacking: security in practice https://ift.tt/fxrHle9
Comments
Post a Comment