News

Massive npm hack poisons 18 packages with billions of downloads

Npm packages are reusable blocks of JavaScript code published to the Node Package Manager registry that developers can ...

This 2FA phishing scam pwned a developer - and endangered billions of npm downloads

A new digital supply chain attack has targeted popular open-source npm packages with at least two billion downloads per week. On Sept. 8, Josh Junon, a package maintainer whose account was at the ...
PublicSource on MSN9h

6 flashpoints in the history of academic freedom in Pittsburgh

From Pitt to CMU to CCAC, Pittsburgh universities have faced clashes over speech, politics and academic freedom for nearly a century.