Tags → #npm
-    Rusty Pipes ExploitUsing Rust to inject malicious code into npm packages. And hijack your entire node runtime. 
-    Rust in Peace: How to Hijack Node.js with a Single RequireDiscover how to exploit the Node.js ecosystem with Rust-based supply chain malware. Learn about the vulnerabilities in npm packages and how a single require line can compromise JavaScript projects. Explore security measures to prevent such attacks. 
-    Rusty PipesAn npm supply chain exploit that checks for what packages you contribute to then injects a malicious rust binary into the next release.