News

Securities.io

NPM Supply-Chain Attack: What Happened and How to Fix It

Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...
GitHub

More than 100 powerful ESLint rules

A modern, faster and lighter fork of eslint-plugin-unicorn. This fork exists to provide various performance improvements and a reduced install footprint. Much of this cannot be contributed upstream ...