NPM registry users download 2.1B deprecated packages weekly, researchers say

19 January 2024

NPM registry users download deprecated packages an estimated 2.1 billion times weekly, according to a statistical analysis of the top 50,000 most-downloaded packages in the registry. Deprecated, archived and “orphaned” NPM packages can contain unpatched and/or unreported vulnerabilities that pose a risk to the projects that depend on them, warned the researchers from Aqua Security’s Team Nautilus, who published their findings in a blog post on Sunday.

Source: SC Magazine

Date:

19 January 2024

Categorie(s):

NEWS

Tag(s):

DevSecOps, IT, News

Microsoft, Google widen passkey support for its users3 May 2024
Cyble Vision X covers the entire breach lifecycle3 May 2024
Leveraging Big Data for Enhanced Cybersecurity Solutions3 May 2024
BlackBerry CylanceMDR improves cybersecurity defensive strategy3 May 2024
New Guide Explains How to Eliminate the Risk of Shadow SaaS and Protect Corporate Data3 May 2024