Glassworm Is Back: A New Wave of Invisible Unicode Attacks Hits Repositories
https://www.aikido.dev/blog/glassworm-returns-unicode-attack-github-npm-vscodeloading story #47388848
loading story #47389223
The `eval` alone should be enough of a red flag
Small discussion yesterday (9+9 points, 9+4 comments) https://news.ycombinator.com/item?id=47374479 https://news.ycombinator.com/item?id=47385244
loading story #47389420
loading story #47389932
loading story #47389497
loading story #47389296
Why didn't some make av rule to find stuff like this, they are just plain text files
loading story #47388735
loading story #47388329
loading story #47389036
loading story #47389638
loading story #47389367
[dead]