all InfoSec news
Protestware taps npm to call out wars in Ukraine, Gaza
Security Boulevard securityboulevard.com
Newly discovered open source software packages on the npm platform contain scripts that broadcast peace messages related to ongoing conflicts in Ukraine and on the Gaza Strip when they are deployed, according to research conducted by ReversingLabs.
The packages are just the latest examples of so-called “protestware,” a recurrent issue in the open source software ecosystem in which application developers conceal political messages inside open source code, often designing it to display to the user after an application is installed …
broadcast call called gaza gaza strip issue latest messages npm open source packages peace platform protestware research reversinglabs scripts software threat research ukraine