Supply Chain Attack Articles

Page 1 of 1 (3 articles)

9/17/2025 • EN

A better future for JavaScript that won't happen

A critique of JavaScript's dependency management after a major supply-chain attack, arguing for systemic change but predicting stagnation.

dependency management JavaScript package management security Supply Chain Attack

Drew DeVault

5/5/2021 • EN

Building a supply chain attack with .NET, NuGet, DNS, source generators, and more!

A technical exploration of how .NET, NuGet, and other tools can be exploited to create a software supply chain attack, using a demo package as an example.

Dn Dotnet Nuget Source Generators Supply Chain Attack

Maarten Balliauw

12/6/2018 • EN

A Snyk’s Post-Mortem of the Malicious event-stream npm package backdoor

A detailed analysis of the malicious event-stream npm package backdoor, its timeline, and the social engineering attack that led to its inclusion.

Event Stream Malicious Package npm security Supply Chain Attack

Liran Tal

Supply Chain Attack Articles

A better future for JavaScript that won't happen

Building a supply chain attack with .NET, NuGet, DNS, source generators, and more!

A Snyk’s Post-Mortem of the Malicious event-stream npm package backdoor

Select Language

We use cookies