re: npm package discovered to have bitcoin-stealing backdoor VIEW POST

TOP OF THREAD FULL DISCUSSION
re: Npm is the perfect attack vector. Thousands of ill maintained packages with thousands of transitive dependencies. Email one fed up maintainer, get...
 
 

It's easier said than done.

For example:

code of conduct - report abuse