Y
Hacker News
new
|
ask
|
show
|
jobs
by
hakcermani
198 days ago
pardon the naive question. What i don't get is these injected payload are js files, isn't there some scanning at npm upload level to look for exfiltration behaviour, bash executions of dangerous commands like rm or shred ?