The installer for PureScript package in the
Last week many developers reported several problems with the installer and PureScript contributor Harry Garrood found malicious code in its
Launching the installer by typing
The installer was originally developed and maintained the Japanese developer Shinnosuke Watanabe (@shinnn), later the maintainers of the project asked him to pass the control of the installer to them.
The developer accepted the request but was disappointed
@shinnn claims that the
The malicious code was identified and removed by the maintainers of the project that have also dropped the Watanabe’s dependencies.
“If you want to be absolutely sure you do not have malicious code on your machine, you should delete your node_modules directories and your
A similar case recently impacted developers using the Ruby strong_password library, the attacker hijacked the account of the real developer and injected malicious code in the library.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.