Hacker News new | ask | show | jobs
by roskoalexey 213 days ago
Some more details:

1. Malware uses a "preinstall" NPM script, which is triggered upon you running `npm install`.

2. Malware installs `bun`.

3. Then it installs and starts `trufflehog` (a tool for scanning code for secrets, API keys, passwords, etc.).
1 comments
nextaccountic 208 days ago
One more reason to run pnpm. Or better yet, deno
link