npm Fiasco. Malware that Steals Bitcoin
2018-11-27 am so enjoying npm's fiasco. a malware that steals bitcoin, obfuscated in event-stream package https://www.theregister.co.uk/2018/11/26/npm_repo_bitcoin_stealer/
i hear it's used by Angular, Vue, Bootstrap. Which means, all websites you visit use it! npm, its leader, is a power hungry skum, and most js coder r milen gen ignoramus
npm's leader, from the few incidents i've seen over the years, is a power hungry skum. and js coders tend to be milen gen eedeots that r pillar of the sjstuff in programing community. also, in js land, 5 lines of code is a package.
the npm malware has been downloaded 8 million times
- ① js is really bad lang and no standard libraries.
- ② new gen of programers is a lot less capable, since ~2010.
- ③ npm leader designed the rules to max npm popularity.
apparently, this happened to python recently
If you have a question, put $5 at patreon and message me.