This article has been indexed from The Register – Security
WhiteSource says it spotted 1,300 malicious JavaScript packages in 2021 alone
Malware gets spotted in GitHub’s npm registry every few months, elevating concerns about the software supply chain until attention gets diverted and worries recede until the next fire drill.…
Read the original article: Worried about occasional npm malware scares? They’re more common than you may think