SoylentNews is people
SoylentNews is powered by your submissions, so send in your scoop. Only 12 submissions in the queue.
SoylentNews
Submission Preview
The npm Blog — `crossenv` malware on the npm registry
Submitted via IRC for Bytram
On August 1, a user notified us via Twitter that a package with a name very similar to the popular cross-env package was sending environment variables from its installation context out to...
"cross-env != crossenv"
Source: http://blog.npmjs.org/post/163723642530/crossenv-malware-on-the-npm-registry [npmjs.org]
You teach best what you most need to learn.
