GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    The Seven Voyages Of Steve (sinbad@mastodon.gamedev.place)'s status on Wednesday, 10-Sep-2025 18:17:16 JST The Seven Voyages Of Steve The Seven Voyages Of Steve

    I remain very not shocked at how a development model of routinely pulling hundreds of third party micro dependencies blindly has turned out to be an absolutely terrible idea https://www.bleepingcomputer.com/news/security/hackers-hijack-npm-packages-with-2-billion-weekly-downloads-in-supply-chain-attack/

    In conversation about 4 months ago from mastodon.gamedev.place permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: www.bleepstatic.com
      Hackers hijack npm packages with 2 billion weekly downloads in supply chain attack
      from @BleepinComputer
      In what is being called the largest supply chain attack in history, attackers have injected malware into NPM packages with over 2.6 billion weekly downloads after compromising a maintainer's account in a phishing attack.

    2. https://cdn.masto.host/mastodongamedevplace/media_attachments/files/115/173/780/485/971/673/original/6b5095edc0f17161.jpeg

    Feeds

    • Activity Streams
    • RSS 2.0
    • Atom
    • Help
    • About
    • FAQ
    • TOS
    • Privacy
    • Source
    • Version
    • Contact

    GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

    Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.