Content
@
https://warpcast.com/~/channel/security
0 reply
0 recast
0 reaction
phil
@phil
ChatGPT recommending random npm packages to install is a supply chain attack nightmare.
5 replies
8 recasts
60 reactions
Giuliano Giacaglia ๐ฒ
@giu
Just had a conversation with Feross, who is building a company to protect against software supply chain attacks. Super interesting conversation. Will post it soon!
0 reply
0 recast
9 reactions
Maria
@goodkitty
Yeah, no kidding. Thatโs a great way to take down half the internet.
0 reply
0 recast
0 reaction
Dawn Kelly
@dawnkelly.eth
I thought I was paranoid because I always go to npm to look at the package, make sure itโs what I think it is, Iโm using the correct package name, etc. Thank you for affirming Iโm smart & not crazy, at least on this front.
0 reply
0 recast
0 reaction
์นด์ํ ๋ผ์ํฌ ๐ญ
@kashifrazzaq20
What steps do you take to ensure the safety of your dependencies and protect against potential supply chain attacks? Share your insights! ๐ค๐
0 reply
0 recast
0 reaction
RiQueza ๐๐ฉโ๏ธ
@riqueza
A spoiler yeah
0 reply
0 recast
0 reaction