Techly NewsGet the app

Get the latest tech news

Malicious versions of Nx and some supporting plugins were published


## Summary Malicious versions of the [`nx` package](https://www.npmjs.com/package/nx), as well as some supporting plugin packages, were published to npm, containing code that scans the file syst...

Malicious versions of the nx package, as well as some supporting plugin packages, were published to npm, containing code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts. 9:58 PM- A member of the team noticed the GitHub issue and posted it on Slack. E-mail security@nrwl.io and we will instruct you on how to decode the file so you are aware what information was leaked Rotate your credentials and tokens on all of your accounts.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of supporting plugins

supporting plugins

Photo of Malicious versions

Malicious versions

« Study finds AI is wiping out entry level hires
Google says the Pixel 10 Pro has worlds best phone camera. I tested it against the S25 Ultra and found a clear winner. »