So the npm exploit happened because the developer was on bluesky and clicked on an email from them.
Had he been on Nostr, all those npm packages wouldn't have gotten compromised.
No thats not accurate, I have seen a screenshot of the email and it was a message spoofing NPM not bluesky.
Please Login to reply.
No replies yet.
