Hacker News
- With the recent scandal over the 'node-ipc' package, is Composer also vulnerable like this? Is there any security measure in the Composer to prevent this type of attack? https://github.com/advisories/GHSA-97m3-w2cp-4xx6 41 comments php
Linking pages
- BIG sabotage: Famous npm package deletes files to protest Ukraine war https://www.bleepingcomputer.com/news/security/big-sabotage-famous-npm-package-deletes-files-to-protest-ukraine-war/ 624 comments
- Let's talk about supply chain attacks and backdoored dependencies https://kerkour.com/supply-chain-attacks-and-backdoored-dependencies 18 comments
Would you like to stay up to date with PHP? Checkout PHP
Weekly.
Related searches:
Search whole site: site:github.com
Search title: Embedded Malicious Code in node-ipc · CVE-2022-23812 · GitHub Advisory Database · GitHub
See how to search.