Lottie Player npm package compromised for crypto wallet theft

On October 31st, 2024, another package compromise and cryptocurrency hijack story unfolded for a popular npm package. Scan open source dependencies and container images in the CLI or your SCM with Snyk to determine if you're using one of the vulnerable versions of lottie-player, and potentially uncover any other security vulnerabilities you may have in your projects.

原始链接: https://snyk.io/blog/lottie-player-npm-package-compromised-crypto-wallet-theft/
侵权请联系站方: [email protected]

相关推荐

换一批