There are rumours that was NX Console VS code extension https://github.com/nrwl/... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		vldszn 5 days ago \| parent \| context \| favorite \| on: GitHub confirms breach of 3,800 repos via maliciou... There are rumours that was NX Console VS code extension https://github.com/nrwl/nx-console/security/advisories/GHSA-... https://www.stepsecurity.io/blog/nx-console-vs-code-extensio...

		help

vldszn 5 days ago | [–]

UPD: it’s confirmed now by the CEO of Nx https://x.com/jeffbcross/status/2057236396658811020?s=46&t=_...

bmandale 5 days ago | | [–]

> One of our developers was compromised by a recent supply-chain compromise on Tanstack

...which in turn was caused by bad design of github's CI pipeline. Funny how it all comes back around like that.

vldszn 5 days ago | | | [–]

Yeah..full circle

raverbashing 5 days ago | | [–]

Sounds like another "why even bother" extension, made to automate things that shouldn't be automated

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact