Nov. 16, 2023, 12:30 p.m. | paul.roberts@reversinglabs.com (Paul Roberts)

ReversingLabs Blog blog.reversinglabs.com


Newly discovered open source software packages on the npm platform contain scripts that broadcast peace messages related to ongoing conflicts in Ukraine and on the Gaza Strip when they are deployed, according to research conducted by ReversingLabs. 

The packages are just the latest examples of so-called “protestware,” a recurrent issue in the open source software ecosystem in which application developers conceal political messages inside open source code, often designing it to display to the user it after an …

broadcast call called gaza gaza strip issue latest messages npm open source packages peace platform protestware research reversinglabs scripts software threat research ukraine

Product Management Director - Application Security

@ Salesforce | India - Hyderabad

Security Leader - Ambulatory Monitoring & Diagnostics

@ Philips | Malvern - B1

Senior Security Analyst

@ NVIDIA | US, CA, Santa Clara

Cyber Risk & Reg - Control Testing Manager - BLR

@ PwC | Kolkata (AC) - Bengaluru Quay - Bagmane Tech Park (KSDC)

Security Engineer

@ Salesforce | California - San Francisco

Senior Security Engineer

@ Remitly | Tel Aviv, Israel