0.0.1-security • Published 3 years ago

bunny-v2 v0.0.1-security

Weekly downloads
-
License
-
Repository
-
Last release
3 years ago

  • Proof of concept of "Dependency Confusion Attack" due to unclaimed NPM package.

  • A dependency confusion attack or supply chain substitution attack occurs when a software installer script is tricked into pulling a malicious code file from a public repository instead of the intended file of the same name from an internal repository.

Reference:

@everything-registry/sub-chunk-1275@zalastax/nolb-bun
0.0.1-security

3 years ago

1.0.11

3 years ago

1.0.1

3 years ago