Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

yarn audit reports malware #89

Open
devtempmac opened this issue Apr 8, 2023 · 1 comment
Open

yarn audit reports malware #89

devtempmac opened this issue Apr 8, 2023 · 1 comment
Assignees
@oleksiilevzhynskyi

Comments

@devtempmac
Copy link

Hello!
yarn audit tells me this repo has some malware:
https://www.npmjs.com/advisories/1079192
https://www.npmjs.com/advisories/1079200
@oleksiilevzhynskyi
Copy link
Collaborator

Hey. Thank you for pointing this out. Both focal-todomvc and focal-manual-tests are not real packages. It's an example of how to use the focal itself. So, no one can install them. The report looks like a mistake. Will open a dispute.

@oleksiilevzhynskyi oleksiilevzhynskyi self-assigned this Jul 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@oleksiilevzhynskyi oleksiilevzhynskyi

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@oleksiilevzhynskyi @devtempmac