npm Finally Intervenes in 'Mini Shai-Hulud' Crisis, but Crypto Security Experts Call It Half
Source: Cryptonews
Published:
<p>After a prolonged silence, the npm registry administration finally stepped into the situation surrounding the massive supply-chain attack and urgently revoked granular access tokens with write permissions that allowed attackers to bypass two-factor authentication.</p> <p>These measures were intro