versionc@lemmy.world to Selfhosted@lemmy.worldEnglish · 15 days agoBitwarden CLI distributed through NPM has been compromised. Bitwarden Statement on Checkmarx Supply Chain Incident.community.bitwarden.comexternal-linkmessage-square79linkfedilinkarrow-up1405arrow-down13
arrow-up1402arrow-down1external-linkBitwarden CLI distributed through NPM has been compromised. Bitwarden Statement on Checkmarx Supply Chain Incident.community.bitwarden.comversionc@lemmy.world to Selfhosted@lemmy.worldEnglish · 15 days agomessage-square79linkfedilink
minus-squarequick_snail@feddit.nllinkfedilinkEnglisharrow-up2·14 days agoPackages are reviewed by package maintainers. Humans are required to solve a malicious insider. But most supply chain vulns of these shitty software dependency managers were resolved decades ago by freely available cryptography
Packages are reviewed by package maintainers.
Humans are required to solve a malicious insider. But most supply chain vulns of these shitty software dependency managers were resolved decades ago by freely available cryptography
deleted by creator