efani.net News | Vulnerabilities in GitHub NPM packages malicious versions
GitHub fixed serious npm registry vulnerability, will mandate 2FA use for certain accounts GitHub has fixed a serious vulnerability that would have allowed attackers to publish new, malicious versions of any existing package on the npm registry. About the fixed vulnerability The vulnerability, flagged by security researchers Kajetan Grzybowski and Maciej Piechota, existed because several […]