NPM event-stream incident
There has been a security issue with npm package event-stream What happened? Original issue: dominictarr/event-stream#116 (comment) Semantic issue: Semantic-Org/Semantic-UI#6687 The library dependency flatmap-stream of event-stream which is used by some popular packages (e.g. nodemon) had a malicious code in it. That code try to steal crypto currencies, so if we are not saving them or mining we should not have any problem, however […]