We all dodged a bullet

Delete Set public Set private Add tags Delete tags

3996 shaares
65 private links

3996 shaares · 65 private links

Filters

Links per page

20 50 100

We all dodged a bullet

It's indeed surprising that this compromised npm account didn't lead to more damage. It's a good reminder that you better regularly audit what happens in your ecosystem.

tech · dependencies · supply-chain · security

September 10, 2025 at 1:05:49 PM GMT+2 · permalink

https://xeiaso.net/notes/2025/we-dodged-a-bullet/

Filters

Links per page

20 50 100