Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.social/users/lrvick/statuses/108274062191145538">Lance R. Vick (lrvick@mastodon.social)'s status on Monday, 15-Jan-2024 09:32:52 JST</a><a href="https://mastodon.social/@lrvick" title="lrvick@mastodon.social"><img src="https://gnusocial.jp/avatar/227797-48-20231231101121.webp" width="48" height="48" alt="Lance R. Vick" style="position: absolute; left: 0; top: 0;">Lance R. Vick</a></section><article><p>1. Buy expired NPM maintainer email domains.<br>2. Re-create maintainer emails<br>3. Take over packages<br>4. Submit legitimate security patches that include package.json version bumps to malicious dependency you pushed<br>5. Enjoy world domination.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2588915#notice-5127685">In conversation</a><time datetime="2024-01-15T09:32:52+09:00" title="Monday, 15-Jan-2024 09:32:52 JST">about 10 months ago</time> <span>from <span><a href="https://mastodon.social/@lrvick/108274062191145538" rel="external" title="Sent from mastodon.social via ActivityPub">mastodon.social</a></span></span><a href="https://mastodon.social/@lrvick/108274062191145538">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Lance R. Vick (lrvick@mastodon.social)'s status on Monday, 15-Jan-2024 09:32:52 JST Lance R. Vick
1. Buy expired NPM maintainer email domains.
2. Re-create maintainer emails
3. Take over packages
4. Submit legitimate security patches that include package.json version bumps to malicious dependency you pushed
5. Enjoy world domination.
In conversationabout 10 months ago from mastodon.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice