Comment on The new Chinese owner of the popular Polyfill JS project injects malware into more than 100 thousand sites

<- View Parent
best_username_ever@sh.itjust.works ⁨4⁩ ⁨months⁩ ago

You’re confused. It’s unrelated to package managers, it’s about basic security principles like this: developer.mozilla.org/…/Subresource_Integrity but JS devs don’t care.

source
Sort:hotnewtop