16 de июля de 2018
An attacker compromised popular Javascript code library ESLint’s submodule using a valid npm maintainer’s account to steal approximately 4,500 log in credentials, which can be used to compromise other developers’ Javascript projects.