"Smuggling Malware in Test Code"

https://blog.phylum.io/smuggling-malware-in-test-code/

"Developers should remain vigilant to carefully vet any source code that strangers on the Internet insist that you download."

#security #infosec #netsec #npm #javascript