Y
Hacker News
new
|
ask
|
show
|
jobs
by
elaus
494 days ago
Worst of all: the article never explains what npm has to do with it. Vscode extensions are not installed via npm, so at least part of the malware depends on the Vscode extension store.