@[email protected] to [email protected] • edit-213 days agoMalicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attackthehackernews.comexternal-linkmessage-square27fedilinkarrow-up1209arrow-down14file-text
arrow-up1205arrow-down1external-linkMalicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attackthehackernews.com@[email protected] to [email protected] • edit-213 days agomessage-square27fedilinkfile-text
Packages: github.com/truthfulpharm/prototransform github.com/blankloggia/go-mcp github.com/steelpoor/tlsproxy
minus-square@[email protected]linkfedilinkEnglish40•13 days ago PyPi npm Maven Central Docker Hub Artifact Hub PPA AUR The problem isn’t specific to anything. It’s also not specific to malware. Vulnerabilities are just as dangerous, if not more so.
minus-square@[email protected]linkfedilink7•12 days agoCargo also has a --git option but I suppose it’s not default behavior
minus-square@[email protected]linkfedilinkEnglish2•12 days agoSure! My point is that hosting doesn’t really matter, though. Malware and vulnerabilities are introduced at all points of supply chains.
minus-square@[email protected]linkfedilink3•12 days agoI agree, I was just giving another example to raise awareness about that feature of rust.
The problem isn’t specific to anything. It’s also not specific to malware. Vulnerabilities are just as dangerous, if not more so.
Cargo also has a
--gitoption but I suppose it’s not default behaviorSure! My point is that hosting doesn’t really matter, though. Malware and vulnerabilities are introduced at all points of supply chains.
I agree, I was just giving another example to raise awareness about that feature of rust.