[-] DangerousDetlef@lemmy.world 34 points 1 year ago* (last edited 1 year ago)
> Solved problem no 174 in my software
> Push to prod, build runs fine, release
> Finally, all problem solved
> Relax, weekend, go do stuff with my wonderful wife and kids
> Monday, back to work
> 296 new problem
[-] DangerousDetlef@lemmy.world 12 points 1 year ago

The really scary thing is probably the malicious npm dependencies. If I think about the projects at work with and all the different packages and the hundreds of dependencies no one knows. And it's probably even worse in really big companies like Microsoft or Facebook, they probably got thousands across their products. I hope for us all that they scan them very regularly.

DangerousDetlef

joined 1 year ago