|
|
|
|
|
|
by vinilios
4155 days ago
|
|
|
I guess its actually the package distribution that makes a difference, an apt package such as rimrafall won't ever reach an official debian repository. So in the context of adversary package code execution the weak spot is actually the npm registry policy and not npm packaging it self. |
|
|