Comment on NPM Package With 56K Downloads Caught Stealing WhatsApp Messages
corsicanguppy@lemmy.ca 2 weeks agoThere’s twonthings at play, here:
- installing dependencies without checking
- a framework that will allow this
Both are absolutely the fault of the user.