Fedpie@sopuli.xyz to Privacy@lemmy.ml · edit-21 hour agoBitwarden CLI was compromised as part of an ongoing Checkmarx-related supply chain attackalternativeto.netexternal-linkmessage-square17fedilinkarrow-up155file-text
arrow-up155external-linkBitwarden CLI was compromised as part of an ongoing Checkmarx-related supply chain attackalternativeto.netFedpie@sopuli.xyz to Privacy@lemmy.ml · edit-21 hour agomessage-square17fedilinkfile-text
Link to the bitwarden post https://community.bitwarden.com/t/bitwarden-statement-on-checkmarx-supply-chain-incident/96127
minus-squareiByteABit@lemmy.mllinkfedilinkarrow-up5·4 hours agoCan npm just disable the post install script feature at this point jfc, or put a ton of hurdles to jump over in order to use it just to make sure that this is always 100% meant to be there
Can npm just disable the post install script feature at this point jfc, or put a ton of hurdles to jump over in order to use it just to make sure that this is always 100% meant to be there