Distributing a self-replicating malicious code using NPM
Gajus Kuizinas

As a start, those concerned could shrinkwrap their packages to prevent any secondary dependencies from unknowingly creeping in. That’s not a fix, but is an interim solution.

One clap, two clap, three clap, forty?

By clapping more or less, you can signal to us which stories really stand out.