Npm Spam Cleanup Briefly Zaps a Few Legit Software Packages

10 January 2018

On Saturday, npm, the chief registry for JavaScript software packages, had lost 97 packages for 30 minutes, including nine popular packages that remained offline for more than three hours, the result of the company’s attempts to deal with spam in the registry, said Npm Inc. Chief Technology Officer CJ Silverio.

Spam is a problem almost as old as the internet itself, but to generally it has not been too much of an issue in software development tooling. Npm, however, has become so successful that it has become a new vector for web spam. The incident differs from the Left-pad disruption last year, in which a package depended on by many had been taken offline by a disgruntled developer.

Read full news article on The New Stack

Date:

10 January 2018

Categorie(s):

NEWS

Tag(s):

Cleanup, Development, Javascript, Node.js, North America, Packages, Programming, Programming Languages, Software

With its new iPad, Apple’s Empire strikes back6 May 2024
Malware campaign attempts abuse of defender binaries6 May 2024
Microsoft unveils new security features for SOC teams to combat insider threats6 May 2024
BigID launches new hybrid scanning technology for enhance cloud data management6 May 2024
At RSA, Cisco launches bolsters in Security Cloud, built on Hypershield and Splunk6 May 2024