WingNews logo WingNews
top | item 44656997

(no title)

maury91 | 7 months ago

From how is unfolding the most probable outcome is that one of the maintainer is compromised ( Ponya ), all of the packages he contributed to have been marked

discuss

order

wut42|7 months ago

That could track but people in the GitHub issue ( https://github.com/stylus/stylus/issues/2938#issuecomment-31... ) have found that no "other" version of Stylus has been released.

linkage|7 months ago

Amateur hour all around in that thread. I can't believe that people are actually, unironically recommending that you use a mutable git tag reference in package.json when they should be using a tamper-proof git SHA instead.

maury91|7 months ago

It may simply be Github and NPM going nuclear and just flagging everything just in case