[HN Gopher] Prettier NPM Packages Compromised in Supply Chain At...
       ___________________________________________________________________
        
       Prettier NPM Packages Compromised in Supply Chain Attack
        
       Author : feross
       Score  : 25 points
       Date   : 2025-07-19 17:30 UTC (5 hours ago)
        
 (HTM) web link (socket.dev)
 (TXT) w3m dump (socket.dev)
        
       | tiagod wrote:
       | This is pretty bad.
        
       | gausswho wrote:
       | Only vulnerable on Windows machines?
        
       | acheong08 wrote:
       | Anyone done reverse engineering on what the dll does? The advice
       | of rolling back versions wouldn't be sufficient if it also
       | exfiltrated ssh keys and such for pushing to git
        
       | c-hendricks wrote:
       | eslint-config-prettier and eslint-plugin-prettier, not prettier
       | proper.
       | 
       | https://news.ycombinator.com/item?id=44609732
        
       ___________________________________________________________________
       (page generated 2025-07-19 23:01 UTC)