Y
Hacker News
new
|
ask
|
show
|
jobs
by
borplk
335 days ago
Does anyone know what the malicious code was and what it did?
1 comments
dale_lakes
335 days ago
The malicious code had nothing to do with the stylus package. One of the maintainers of stylus published malicious code in another package, and GitHub / npmjs response was to nuke ALL packages that he was a maintainer of, including stylus.
link
silverwind
334 days ago
The sensible action would be to remove only the malicious packages and suspend that account.
link