A Dune-inspired worm recently hit CrowdStrike and npm, infecting hundreds of packages. Here's what happened - and how to protect your code.
"Each published package becomes a new distribution vector: as soon as someone installs it, the worm executes, replicates, and ...