- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Post Mortem: axios npm supply chain compromise · Issue #10636 · axios/axios — Explained in 60s
Post Mortem: axios npm supply chain compromiseDate: March 31, 2026Author: Jason SaaymanStatus: Remediation in progressOn March 31, 2026, two malicious versions of axios (1.14.1 and 0.30.4) were published to the npm registry through my compromised account.
The malicious versions were live for about 3 hours before being removed.
This gave them access to the npm account credentials, which they used to publish the malicious versions.
AcknowledgmentsThanks to @DigitalBrainJS for acting fast when the compromised account had higher permissions than his own and for getting npm to take action.
Thanks to Open Source Community and the npm security team for their fast response.
Read more: https://github.com/axios/axios/issues/10636
#AI #ArtificialIntelligence #MachineLearning #TechAI #AITools #AIBreakthrough
Видео Post Mortem: axios npm supply chain compromise · Issue #10636 · axios/axios — Explained in 60s канала Code Rush
The malicious versions were live for about 3 hours before being removed.
This gave them access to the npm account credentials, which they used to publish the malicious versions.
AcknowledgmentsThanks to @DigitalBrainJS for acting fast when the compromised account had higher permissions than his own and for getting npm to take action.
Thanks to Open Source Community and the npm security team for their fast response.
Read more: https://github.com/axios/axios/issues/10636
#AI #ArtificialIntelligence #MachineLearning #TechAI #AITools #AIBreakthrough
Видео Post Mortem: axios npm supply chain compromise · Issue #10636 · axios/axios — Explained in 60s канала Code Rush
Комментарии отсутствуют
Информация о видео
4 апреля 2026 г. 13:41:16
00:00:53
Другие видео канала
How a simple link allowed hackers to bypass Copilot's security guardrails - and what Microsoft did a
FreeBSD doesn't have Wi-Fi driver for my old MacBook. AI build one for me — Explained in 60s
Some uncomfortable truths about AI coding agents – Standup for Me — Explained in 60s
klawsh/klaw.sh: kubernetes for ai agents — Explained in 60s
AI News: Introducing Mercury 2 – Inception — Explained in 60s
A century of hair samples proves leaded gas ban worked — Explained in 60s
Lenovo’s New T-Series ThinkPads Score 10/10 for Repairability — Explained in 60s
How Brian Eno Created Ambient 1: Music for Airports — Explained in 60s
AI News: TorchLean: Formalizing Neural Networks in Lean — Explained in 60s
GitHub - alainnothere/llm-circuit-finder: I replicated Ng's RYS method and found that duplicating 3
steffest/DPaint-js: Webbased image editor, modeled after the legendary Deluxe Paint with a focus on
Could you be an AI data trainer? How to prepare and what it pays — Explained in 60s
AI News: 21st-dev/1code: Better UI app for running code agents in parallel (ClaudeCode, OpenCode, Co
AI News: Can LLMs model real-world systems in TLA+? — Explained in 60s
Masumi Network: How AI-blockchain fusion adds trust to burgeoning agent economy — Explained in 60s
Top 10 AI Testing Companies in 2026 — Explained in 60s
AIs can’t stop recommending nuclear strikes in war game simulations — Explained in 60s
AI Coding is Gambling — Explained in 60s
Recover Apple Keychain — Explained in 60s
Rainbow Six Siege Hacked as Players Get Billions of Credits and Random Bans — Explained in 60s
GitHub - pewdiepie-archdaemon/odysseus: Self-hosted AI workspace. — Explained in 60s
