Pulse of Truth

1425 readers

55 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 2 years ago

MODERATORS

krogoth

NPM package ‘is’ with 2.8M weekly downloads infected devs with malware (www.bleepingcomputer.com)

submitted 1 week ago by lemmydev2 to c/pulse_of_truth

2 comments fedilink hide all child comments

The popular NPM package 'is' has been compromised in a supply chain attack that injected backdoor malware, giving attackers full access to compromised devices. [...]

top 2 comments

sorted by: hot top controversial new old

[–] resipsaloquitur@lemmy.world 1 points 1 week ago (1 children)

Is this a prerequisite for isFalse()?

[–] buffing_lecturer@leminal.space 1 points 1 week ago

Not sure if this answers your question

The 'is' package is a lightweight JavaScript utility library that provides a wide variety of type checking and value validation functions.