SiliconANGLE

Protest against Russia turns into a supply chain attack in popular JavaScript module

A protest via a developer against Russia’s invasion of Ukraine has turned into a supply chain attack in a popular JavaScript developer module. Detailed Wednesday by researchers at Snyk Ltd., the ...
Dark Reading

Supply Chain Attack Deploys Hundreds of Malicious NPM Modules to Steal Data

A routine scan of the NPM open source code repository in April turned up several packages using a JavaScript obfuscator to hide their true function. After further investigation, analysts with ...
Visual Studio Magazine

TypeScript 5.9 RC Brings Deferred Imports, Node.js 20 Module Target

TypeScript 5.9 has reached the release candidate (RC) stage with enhancements for modern module behavior, hover tooltips, and deferred module evaluation. Microsoft announced the RC on July 25, ahead ...