Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
ricardobeat
6y ago
0 comments
Save
Share
In the example the linter itself is not malicious, but used to deliver a malicious program that can have unrestricted filesystem access. Not vague at all, see recent news on the ‘event-stream’ package being used to steal cryptocurrency wallets.
0 comments
1 comments · 1 top-level
top
newest
oldest
pvg
6y ago
The 'vague' part is not that it doesn't happen - see the comment you are replying to.
j
/
k
navigate · click thread line to collapse
