News

Not pretty, not Windows-only: npm phishing attack laces popular packages with malware
The popular npm package "is" was infected with cross-platform malware, around the same time that linting utility packages ...
npm 'accidentally' removes Stylus package, breaks builds and pipelines
Stylus library and replaced them with a "security holding" page, breaking pipelines and builds worldwide that rely on the ...