(github.com)

441 points longcat | 1 comments | 27 Aug 25 01:38 UTC | HN request time: 0.208s | source

See also:

1. abhisek ◴[27 Aug 25 17:05 UTC] No.45042242[source]▶

May be give vet a try. It detected most of the malicious packages within few hours of publishing to npm.

Malicious versions of Nx and some supporting plugins were published