Jawa
@jawa
Do vibe coders understand source code supply chain security? https://arstechnica.com/information-technology/2025/05/destructive-malware-available-in-npm-repo-went-unnoticed-for-2-years/
3 replies
0 recast
1 reaction
meatballs
@meatballs
No. Probably not. But no less than the thousands who have been cutting and pasting SO snippets for years.
0 reply
0 recast
1 reaction
keccers
@keccers.eth
This one does. π But I donβt really work on anything sophisticated enough to be too worried.
0 reply
0 recast
1 reaction
Metaphorical
@hyp
It does seem like these tools are ripe for hacking
0 reply
0 recast
1 reaction
