minus-squareMeron35@lemmy.worldtoSelfhosted@lemmy.world•Bitwarden CLI distributed through NPM has been compromised. Bitwarden Statement on Checkmarx Supply Chain Incident.linkfedilinkEnglisharrow-up15·8 days agoAs someone completely unfamiliar with the JavaScript mess, are these security issues specific to npm the actual repository or npm the package manager? If it’s the latter, does using something else like yarn or bun instead help? linkfedilink
As someone completely unfamiliar with the JavaScript mess, are these security issues specific to npm the actual repository or npm the package manager?
If it’s the latter, does using something else like yarn or bun instead help?