index

>

software dependencies

[Link] Does ES6 make JavaScript frameworks obsolete?

Read: 14/11/2021 stackoverflow.blog

Every time JavaScript goes through a major update, we seem to repeat the same cycle. At first, developers are delighted by the new features. They move back to coding directly in JavaScript, and frameworks become less popular.

code code libraries explanations javascript nodejs open standards programming software dependencies software development software libraries standardisation web browser apps web browsers web standards

[Link] Trojan Source attack: Code that says one thing to humans tells your compiler something very different, warn academics

Read: 3/11/2021 www.theregister.com

Updated The way Unicode's UTF-8 text encoding handles different languages could be misused to write malicious code that says one thing to humans and another to compilers, academics are warning.

code compilers cyber hacks cyberpunk future cybersecurity dependency attack encryption github hidden in plain site infocalypse malicious software novel attacks optical illusion software software dependencies software development source code supply chains threat vectors trojan horse unicode unreliable source lol vulnerabilities

[Link] Supply Chain Attack: NPM Library Used By Facebook And Others Was Compromised

Read: 25/10/2021 hackaday.com

Here at Hackaday we love the good kinds of hacks, but now and then we need to bring up a less good kind. Today it was learned that the NPM package ua-parser-js was compromised, and any software using it as a library may have become victim of a supply chain attack.

attacks on infrastructure code cyber crime cyber hacks dependency attack hackaday hackers javascript nodejs npm package managers programming software software dependencies software development software libraries upstream attack