Blocking malicious versions of event-stream and flatmap-stream packages

added by DotNetKicks
11/28/2018 4:39:25 AM

1 Kicks, 2459 Views

On November 26, 2018, the npm package manager released security advisory 737 regarding the flatmap-stream package. It was determined that this package was malicious, and contained harmful code. In addition, the popular event-stream package was modified to make use of the harmful flatmap-stream package.