- what's the worst case scenario that could happen if you install a malicious npm package? https://snyk.io/blog/typosquatting-attacks/ 25 comments node
Linking pages
- Never a dill moment: Exploiting machine learning pickle files | Trail of Bits Blog https://blog.trailofbits.com/2021/03/15/never-a-dill-moment-exploiting-machine-learning-pickle-files/ 21 comments
- NPM security: preventing supply chain attacks | Snyk https://snyk.io/blog/npm-security-preventing-supply-chain-attacks/ 3 comments
- Python security best practices cheat sheet | Snyk https://snyk.io/blog/python-security-best-practices-cheat-sheet/ 0 comments
- 3 Jedi-inspired lessons to level up your JavaScript security | Snyk https://snyk.io/blog/jedi-lessons-to-level-up-javascript-security/ 0 comments
- Why you can’t use Sigstore without Sigstore | by Zachary Newman | Jan, 2023 | sigstore https://blog.sigstore.dev/why-you-cant-use-sigstore-without-sigstore-de1ed745f6fc 0 comments
- Sharing code between Deno and Node where Bun and ts-node failed https://cendyne.dev/posts/2023-07-17-sharing-code-between-deno-and-node.html 0 comments
Linked pages
- Tweet / Twitter https://mobile.twitter.com/o_cee/status/892306836199800836 650 comments
- Malicious remote code execution backdoor discovered in the popular bootstrap-sass Ruby gem | Snyk https://snyk.io/blog/malicious-remote-code-execution-backdoor-discovered-in-the-popular-bootstrap-sass-ruby-gem/ 80 comments
- Bank of America - Banking, Credit Cards, Loans and Merrill Investing http://www.bankofamerica.com 50 comments
- Concerns of supply-chain attacks amplify as remote code execution was found in Ruby gem strong_password | Snyk https://snyk.io/blog/ruby-gem-strong_password-found-to-contain-remote-code-execution-code-in-a-malicious-version-further-strengthening-worries-of-growth-in-supply-chain-attacks/ 39 comments
- SourMint: Malicious code, ad fraud, and data leak in iOS | Snyk https://snyk.io/blog/sourmint-malicious-code-ad-fraud-and-data-leak-in-ios/ 3 comments
- 10 npm Security Best Practices | Snyk https://snyk.io/blog/ten-npm-security-best-practices/ 2 comments
- Snyk Open Source Advisor | Snyk https://snyk.io/advisor/ 1 comment
- Malicious packages found to be typo-squatting in Python Package Index | Snyk https://snyk.io/blog/malicious-packages-found-to-be-typo-squatting-in-pypi/ 0 comments
- Malicious code found in npm package event-stream downloaded 8 million times in the past 2.5 months | Snyk https://snyk.io/blog/malicious-code-found-in-npm-package-event-stream 0 comments
- GitHub - lirantal/npq: 🎖safely* install packages with npm or yarn by auditing them as part of your install process https://github.com/lirantal/npq 0 comments
- `crossenv` malware on the npm registry | by C J Silverio | Medium https://medium.com/@ceejbot/crossenv-malware-on-the-npm-registry-45c7dc29f6f5 0 comments
Would you like to stay up to date with Web Development? Checkout Web Development
Weekly.
Related searches:
Search whole site: site:snyk.io
Search title: Typosquatting attacks | Snyk Blog
See how to search.