In this week’s #TheLongView: The npm registry suffers spam infestation, and Microsoft makes Google sad.
Blast Radius of GitHub Breach Major Security Concern
The extent to which software supply chains may be compromised in the wake of a security breach disclosed by GitHub may include thousands of organizations. GitHub has revealed that unauthorized parties compromised OAuth user tokens maintained by Heroku, an arm of Salesforce that provides a platform-as-a-service (PaaS) environment, and Travis CI, a provider of a […]