I mean sure, the turn-around time is great...but how did this pass review in the... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		_tqci on July 12, 2018 \| parent \| context \| favorite \| on: ESLint compromised, may have stolen your credentia... I mean sure, the turn-around time is great...but how did this pass review in the first place? This should never happen in a reasonably managed project.

andrew_ on July 12, 2018 [–]

It wasn't up for review. It was published out of band, and outside of the ESLint pipeline using likely stolen credentials. That's how that stuff sneaks in.

_tqci on July 12, 2018 | [–]

Ah, thanks for the clarification. At first I thought this made it through the actual release process.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact