Latest Privacy


Malicious code ousted from PureScript's npm installer – but who put it there in the first place?

By Thomas Claburn 15 Jul 2019 at 12:07

Another JavaScript package in the npm registry - the installer for PureScript - has been tampered with, leading project maintainers to revise their software to purge the malicious code. After a week of reports of unexpected behavior, software developer and PureScript contributor Harry Garrood on Friday published his account of the affair.

Read more