JavaScript Supply Chain with Feross Aboukhadijeh
JavaScript Archives - Software Engineering Daily
What's the JavaScript Supply Chain?
The JavaScript community is incredibly creative and generative. Part of that comes from the permissionless nature of NPM where anyone can publish a package. There's also an increase in people hijacking packages because maintainers are reusing passwords. We're seeing nearly weekly attacks against the open source software supply chain, mainly coming from hijacked packages.
00:00
Transcript
Play full episode
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
