Popular npm library ‘coa’ hijacked breaking React pipelines worldwide

Popular npm library ‘coa’ was hijacked today with malicious code injected into it, ephemerally impacting React pipelines around the world. The ‘coa’ library, short for Command-Option-Argument, receives about 9 million weekly downloads on npm, and is used by almost 5 million open source repositories on GitHub.

Read full article on Bleeping Computer

 


Date:

Categorie(s):

Tag(s):